Linux IP Masquerade HOWTO <author>David Ranch, <tt><htmlurl url="mailto:dranch@trinnet.net" name="dranch@trinnet.net"></tt> <date>v1.95, November 14, 2000 <trans>ÆüËÜ¸ìÌõ: JF Project (<tt>jf@linux.or.jp</tt>) <tdate>v1.0.0j Jul. 12, 2001 <abstract>  ¤³¤ÎÊ¸½ñ¤Ï¡¢ Linux ¥Û¥¹¥È¤Ë IP ¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤òÆ°ºî¤µ¤»¤ëÊýË¡¤ò¾Ü½Ò ¤·¤Þ¤¹¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¥Í¥Ã¥È¥ï¡¼¥¯¥¢¥É¥ì¥¹ÊÑ´¹°¿¤Ï NAT ¤Î°ì·ÁÂÖ¤Ç¡¢Àµ¼°¤Ê ¥¤¥ó¥¿¡¼¥Í¥Ã¥È IP ¥¢¥É¥ì¥¹¤ò»ý¤¿¤Ê¤¤ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¾å¤Î¥³¥ó¥Ô¥å¡¼¥¿¤¬¡¢ Linux BOX ¤Ë³ä¤ê¿¶¤é¤ì¤¿Ã±°ì¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È IP ¥¢¥É¥ì¥¹¤òÄÌ¤¸¤Æ ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤Ç¤¤ë¤è¤¦¤Ë¤·¤Þ¤¹¡£ </abstract> <toc>    <sect> ¤Ï¤¸¤á¤Ë  <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î³µÎ¬  ¤³¤ÎÊ¸½ñ¤Ç¤Ï¡¢Linux ¥Û¥¹¥È¤Ç IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò¹Ô¤¦ÊýË¡¤Ë¤Ä¤¤¤ÆÀâÌÀ ¤·¤Þ¤¹¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¥Í¥Ã¥È¥ï¡¼¥¯¥¢¥É¥ì¥¹ÊÑ´¹¡¢¤¹¤Ê¤ï¤Á NAT ¤Î°ì¼ï¤Ç¡¢ ¤³¤ì¤ò»È¤¦¤ÈÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Î¥³¥ó¥Ô¥å¡¼¥¿¤¬Ê£¿ô¤Î¸ø¼°¤Ê¥¤¥ó¥¿¡¼¥Í¥Ã¥È ¥¢¥É¥ì¥¹¤ò»ý¤¿¤Ê¤¯¤Æ¤â Linux BOX ¤Î¤¿¤À°ì¤Ä¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È IP ¥¢¥É¥ì¥¹ ¤ò»È¤Ã¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤Ç¤¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£ ¤³¤ì¤é¥Þ¥·¥ó¤È Linux ¥Û¥¹¥È¤È¤Ï¡¢¥¤¡¼¥µ¥Í¥Ã¥È¡¢TokenRing, FDDI Åù¤Î LAN ¤òÍÑ¤¤¤ëÊýË¡¤À¤±¤Ç¤Ê¤¯¡¢¥À¥¤¥ä¥ë¥¢¥Ã¥× ppp ¤ä SLIP ¥ê¥ó¥¯Åù¡¢ ¿§¡¹¤Ê·ÁÂÖ¤ÇÀÜÂ³¤¹¤ë¤³¤È¤¬²ÄÇ½¤Ç¤¹¡£ ¤³¤ÎÊ¸½ñ¤Ç¤Ï¼ç¤Ë¡¢ºÇ¤â°ìÈÌÅª¤Ê¥¤¡¼¥µ¥Í¥Ã¥ÈÀÜÂ³¤Ë¤Ä¤¤¤ÆÀâÌÀ¤·¤Þ¤¹¡£  <quote> <bf>¤³¤ÎÊ¸½ñ¤Ï°ÂÄêÈÇ¥«¡¼¥Í¥ë 2.0.38 °Ê¹ß¤Þ¤¿¤Ï 2.2.1 °Ê¹ß¤ò IBM ¸ß´¹ PC ¤Ç»È¤Ã¤Æ¤¤¤ë¥æ¡¼¥¶¡¼¸þ¤±¤Ë½ñ¤«¤ì¤Æ¤¤¤Þ¤¹¡£ ¥«¡¼¥Í¥ë 1.2.x, 1.3.x ¤Ê¤É¤Î¸Å¤¤¥Ð¡¼¥¸¥ç¥ó¤ä 2.1.x ¤Ï°·¤Ã¤Æ¤¤¤Þ¤»¤ó¡£ ¤Þ¤¿¥«¡¼¥Í¥ë¤Î¥Ð¡¼¥¸¥ç¥ó¤Ë¤è¤Ã¤Æ¤ÏÆ°ºî¤·¤Ê¤¤¤â¤Î¤¢¤ë¤«¤âÃÎ¤ì¤Þ¤»¤ó¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò»È¤¦Á°¤Ë¡¢°ÂÄêÈÇ¥«¡¼¥Í¥ë¤Î¤É¤ì¤«°ì¤Ä¤Ë¹¹¿·¤·¤Æ¤ª¤¤¤Æ¤¯¤À¤µ¤¤¡£ ¿·¤·¤¤ 2.3 ¤ä 2.4 ¥«¡¼¥Í¥ë¤Î NetFilter ¥³¡¼¥É¤ÏÌ¤¤À°·¤Ã¤Æ¤¤¤Þ¤»¤ó¤¬¡¢ »²¹Í¤Î°Ù¤Ë URL ¤òµºÜ¤·¤Æ¤¤¤Þ¤¹¡£ NetFilter ¤Îµ¡Ç½¤¬¸Ç¤Þ¤Ã¤¿¤é¡¢ºÇ¿·¥³¡¼¥É¤Ç¤Î»È¤¤Êý¤ò HOWTO ¤ÎÃæ¤Ç ¼è¤ê°·¤Ã¤Æ¤¤¤¤Þ¤¹¡£</bf> <bf>¤â¤·¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò¥Þ¥Ã¥¥ó¥È¥Ã¥·¥å¤Ç»È¤ª¤¦¤È¤·¤Æ¤¤¤ë¤Ê¤é¡¢ Taro Fukunaga, <htmlurl url="mailto:tarozax@earthlink.net" name="tarozax@earthlink.net"> ¤Ë E ¥á¡¼¥ë¤òÁ÷¤Ã¤Æ¡¢Èà¤¬½ñ¤¤¤¿¤³¤Î HOWTO ¤Î Mklinux ÍÑ¥Ð¡¼¥¸¥ç¥ó¤Î¥³¥Ô¡¼¤ò¤â¤é¤Ã¤Æ¤¯¤À¤µ¤¤¡£</bf> </quote>  <sect1> ½øÊ¸¡¢¥Õ¥£¡¼¥É¥Ð¥Ã¥¯¤È¥¯¥ì¥¸¥Ã¥È  »ä¤Ï¡¢ Linux ¥«¡¼¥Í¥ë¤Ë IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÀßÄê¤¹¤ë¤³¤È¤Ï¡¢¿·¤·¤¤¥æ¡¼¥¶¤Ë ¤È¤Ã¤Æ¤«¤Ê¤êÌñ²ð¤Ê¤³¤È¤À¤È¤¤¤¦¤³¤È¤Ëµ¤ÉÕ¤¤Þ¤·¤¿ (¥«¡¼¥Í¥ë 1.2.x °ÊÁ°¤Îº¢¤Î¤³¤È¤Ç¤¹)¡£ FAQ ¤ä¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤¬Â¸ºß¤·¤Æ¤¤¤ë¤Ë¤â¹´¤é¤º¡¢¤³¤ÎÅÀ¤òÀìÌç¤Ë²òÀâ¤·¤¿ Ê¸½ñ¤Ï¤Ê¤«¤Ã¤¿¤Î¤Ç¤¹¡£ ¤Þ¤¿¡¢¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë¤Ï¡¢¤½¤Î¤è¤¦¤Ê HOWTO ¤òµá¤á¤ëÀ¼¤¬²¿ÅÙ¤«´ó¤»¤é¤ì¤Æ ¤¤¤Þ¤·¤¿¡£ ¤½¤³¤Ç»ä¤Ï¡¢¿·¤·¤¤¥æ¡¼¥¶¡¼¤Î¤¿¤á¤Î¼ê¤¬¤«¤ê¤È¤·¤Æ¡¢¤Þ¤¿¤â¤Ã¤ÈÃÎ¼±¤Î¤¢¤ë ¥æ¡¼¥¶¡¼¤ËÊ¸½ñ¤ò½ñ¤¤¤Æ¤â¤é¤¦¤¿¤á¤ÎÃ¡¤Âæ¤È¤·¤Æ¡¢¤³¤ÎÊ¸½ñ¤ò½ñ¤¯¤³¤È¤ò ·è¿´¤·¤¿¤Î¤Ç¤¹¡£ ¤³¤ÎÊ¸½ñ¤Î½ÐÍè¤¬Í¾¤êÎÉ¤¯¤Ê¤¤¤È»×¤ï¤ì¤¿¤é¡¢±óÎ¸¤Ê¤¯»ä¤Ë¤½¤¦¸À¤Ã¤Æ ¤¯¤À¤µ¤¤¡£ ²þÁ±¤·¤Æ¤¤¤¤¿¤¤¤È»×¤¤¤Þ¤¹¡£  ¤³¤ÎÊ¸½ñ¤Ï¡¢ Ken Eves »á¤Ë¤è¤ë FAQ ¤È¡¢IP ¥Þ¥¹¥«¥ì¡¼¥É¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë Î®¤ì¤¿Âô»³¤ÎÍ±×¤Ê¥á¥Ã¥»¡¼¥¸¤ËÂ¿¤¯¤òÉé¤Ã¤Æ¤¤¤Þ¤¹¡£ ¤Þ¤¿»ä¤¬ IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÀßÄê¤·¡¢ºÇ½ªÅª¤Ë¤Ï¤³¤ÎÊ¸½ñ¤ò½ñ¤¯¤¤Ã¤«¤±¤È ¤Ê¤Ã¤¿¥á¥Ã¥»¡¼¥¸¤ò¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤ÇÁ÷¤Ã¤Æ¤¯¤ì¤¿ Matthew Driver »á¤Ë¤Ï¡¢ ÆÃÊÌ¤Ê´¶¼Õ¤Î°Õ¤òÉ½¤·¤¿¤¤¤È»×¤¤¤Þ¤¹¡£ ºÇ¶á¡¢David Ranch ¤¬¤³¤Î HOWTO ¤ò¤Ç¤¤ë¸Â¤ê´°Á´¤Ë¤¹¤ë¤¿¤á¤Ë¤«¤Ê¤ê¤ÎÉôÊ¬¤ò ÄÉ²Ã¤·¡¢½ñ¤Ä¾¤·¤Þ¤·¤¿¡£  ¾ðÊó¤¬´Ö°ã¤Ã¤Æ¤¤¤¿¤ê¡¢È´¤±Íî¤Á¤Æ¤¤¤ë¾ì¹ç¤Ë¤Ï¡¢±óÎ¸¤Ê¤¯¥á¡¼¥ë¤ò <htmlurl url="mailto:ambrose@writeme.com" name="ambrose@writeme.com"> µÚ¤Ó <htmlurl url="mailto:dranch@trinnet.net" name="dranch@trinnet.net"> ¤ËÁ÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¤¢¤Ê¤¿¤Îµ®½Å¤Ê¥Õ¥£¡¼¥É¥Ð¥Ã¥¯¤Ï¡¢¤¤Ã¤È¤³¤Î HOWTO ¤ËÈ¿±Ç¤µ¤ì¤Þ¤¹! ¡ÚÌõÃí: ÆüËÜ¸ìÌõ¤Ë´Ø¤¹¤ë¥³¥á¥ó¥È¤Ï¡¢ Linux JF Project <jf@linux.or.jp> Ëø¤ª´ê¤¤¤·¤Þ¤¹¡£¡Û  <bf>¤³¤Î HOWTO ¤Ï¡¢¤Ç¤¤ë¤À¤±Ã»»þ´Ö¤Ç IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò»È¤¨¤ë¤è¤¦¤Ë ¤¹¤ë¤¿¤á¤Î ´ÊÃ±¤Ê¥¬¥¤¥É¤È¤·¤Æ½ñ¤«¤ì¤¿¤â¤Î¤Ç¤¹¡£ David ¤Ï¥Æ¥¯¥Ë¥«¥ë¥é¥¤¥¿¡¼¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó¤«¤é¡¢ ¤³¤ÎÊ¸½ñÃæ¤Î¾ðÊó¤Ï °ìÈÌÅª¤Ç¤Ê¤«¤Ã¤¿¤ê¡¢µÒ´ÑÀ¤Ë·ç¤±¤Æ¤¤¤ë¤³¤È¤â¤¢¤ë¤Ç¤·¤ç¤¦¡£ ¤³¤Î HOWTO ¤ä IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ë´Ø¤¹¤ëºÇ¿·¤Î¥Ë¥å¡¼¥¹¤ä¾ðÊó¤Ï¡¢²æ¡¹¤¬ ÀºÎÏÅª¤Ë¥á¥ó¥Æ¥Ê¥ó¥¹¤·¤Æ¤¤¤ë <url url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> web ¥Ú¡¼¥¸¤Ë¤¢¤ê¤Þ¤¹¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ë´Ø¤¹¤ëµ»½ÑÅª¤Ê¼ÁÌä¤¬¤¢¤ë¾ì¹ç¤Ë¤Ï¡¢David ¤Ë¥á¡¼¥ë¤ò Á÷¤é¤º¤Ë IP ¥Þ¥¹¥«¥ì¡¼¥É¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë»²²Ã¤·¤Æ¤¯¤À¤µ¤¤¡£ ¥Þ¥¹¥«¥ì¡¼¥É¤Ë´Ø¤¹¤ëÌäÂê¤ÎËØ¤É¤Ï¥Þ¥¹¥«¥ì¡¼¥É¥æ¡¼¥¶¤Ë¶¦ÄÌ¤ÎÌäÂê¤Ç¤¢¤ê¡¢ ¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¾å¤ÎÃ¯¤«¤¬´ÊÃ±¤Ë²ò·è¤·¤Æ¤¯¤ì¤ë¤Ç¤·¤ç¤¦¡£ ¤½¤ì¤Ë¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤«¤é¤Î²óÅú¤ÎÊý¤¬¡¢ David ¤«¤é¤Î²óÅú¤è¤ê¤º¤Ã¤È Áá¤¤¤Ç¤¹¡£</bf>  ¤³¤ÎÊ¸½ñ¤ÎºÇ¿·¥Ð¡¼¥¸¥ç¥ó¤Ï¡¢°Ê²¼¤Î¥µ¥¤¥È¤Ë¤¢¤ê¤Þ¤¹¡£ HTML ¤È¥Ý¥¹¥È¥¹¥¯¥ê¥×¥È¤Î¥Ð¡¼¥¸¥ç¥ó¤â¤¢¤ê¤Þ¤¹¡£  <itemize> <item><htmlurl url="http://ipmasq.cjb.net/" name="http://ipmasq.cjb.net/ - IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> <item><htmlurl url="http://ipmasq2.cjb.net/" name="http://ipmasq2.cjb.net/ - IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»¡¦¥ß¥é¡¼¥µ¥¤¥È"> <item><htmlurl url="http://www.linuxdoc.org/" name="The Linux Documentation Project"> <item><htmlurl url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#ipmasq" name="Dranch's Linux page"> <item>Â¾¤Î¥í¡¼¥«¥ë¥ß¥é¡¼¥µ¥¤¥È¤È¤·¤Æ<url url="http://ipmasq.cjb.net/index.html#mirror" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»¡¦¥ß¥é¡¼¥µ¥¤¥È¤Î°ìÍ÷">¤â»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ </itemize>  <sect1> Copyright & Disclaimer ¡ÚÌõÃí: ¤³¤ÎÉôÊ¬¤Ï¸¶Ê¸¤ò¤½¤Î¤Þ¤Þ¼¨¤·¤Þ¤¹¡£¡Û This document is <tt>copyright(c) 2000 David Ranch</tt> and it is a FREE document. You may redistribute it under the terms of the GNU General Public License. The information herein this document is, to the best of David's knowledge, correct. However, the Linux IP Masquerade feature is written by humans and thus, there is the chance that mistakes, bugs, etc. might happen from time to time. No person, group, or other body is responsible for any damage on your computer(s) and any other losses by using the information on this document. i.e. <quote> <bf>THE AUTHORS AND ALL MAINTAINERS ARE NOT RESPONSIBLE FOR ANY DAMAGES INCURRED DUE TO ACTIONS TAKEN BASED ON THE INFORMATION IN THIS DOCUMENT.</bf> </quote>  ¤µ¤¢½àÈ÷¤¬¤Ç¤¤¿¤Î¤Ç¡¢ËÜÂê¤ËÆþ¤ê¤Þ¤·¤ç¤¦¡£     <sect> Í½È÷ÃÎ¼±  <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤È¤Ï  IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¡¢ Linux ¤Ë¤ª¤±¤ë¥Í¥Ã¥È¥ï¡¼¥¥ó¥°µ¡Ç½¤Ç¤¢¤ê¡¢Â¿¤¯¤Î ¾¦ÍÑ¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤ä¥Í¥Ã¥È¥ï¡¼¥¯¥ë¡¼¥¿¤Ë¸«¼õ¤±¤é¤ì¤ë 1ÂÐÂ¿¤Î NAT (Network Address Translation: ¥Í¥Ã¥È¥ï¡¼¥¯¥¢¥É¥ì¥¹ÊÑ´¹) ¤È»÷¤Æ¤¤¤Þ¤¹¡£ Îã¤È¤·¤Æ¡¢ Linux ¥Û¥¹¥È¤¬ PPP ¤ä¥¤¡¼¥µ¥Í¥Ã¥ÈÅù¤Ë¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³ ¤µ¤ì¤Æ¤¤¤ë¤È¤·¤Þ¤·¤ç¤¦¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÎÆÃÄ§¤Ï Linux ¥Ü¥Ã¥¯¥¹¤Ë (PPP ¤ä¥¤¡¼¥µ¥Í¥Ã¥ÈÅù¤Ë¤Æ) ÀÜÂ³¤µ¤ì¤ë "ÆâÉô¤Î" ¥³¥ó¥Ô¥å¡¼¥¿¤Ë¤âÅù¤·¤¯¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ò ÍøÍÑ¤Ç¤¤ë¤è¤¦¤Ë¤·¤Þ¤¹¡£ Linux ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ï¡¢ÆâÉô¥Þ¥·¥ó¤¬¸ø¼°¤Ë³ä¤êÅö¤Æ¤é¤ì¤¿ IP ¥¢¥É¥ì¥¹¤ò»ý¤¿¤Ê¤¯¤Æ¤â¡¢ÆâÉô¥Þ¥·¥ó¤¬¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë ÀÜÂ³¤Ç¤¤ë¤è¤¦¤Ë¤·¤Þ¤¹¡£   ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¡¢ ¥Þ¥¹¥«¥ì¡¼¥É¥²¡¼¥È¥¦¥§¥¤¤ò·ÐÍ³¤·¤Æ¡¢Á´¤Æ¤Î¥Þ¥·¥ó¤ò ±£¤·¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë¥¢¥¯¥»¥¹¤Ç¤¤ë¤è¤¦¤Ë¤·¤Þ¤¹¡£ ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤ÎÂ¾¤Î¥Þ¥·¥ó¤«¤é¤Ï¡¢È¯À¸¤¹¤ëÁ´¤Æ¤Î¥È¥é¥Õ¥£¥Ã¥¯¤Ï ¤¢¤¿¤«¤â IP ¥Þ¥¹¥«¥ì¡¼¥É Linux ¥µ¡¼¥Ð¼«¿È¤«¤é¤Î¤â¤Î¤Ç¤¢¤ë¤è¤¦¤Ë ¸«¤¨¤Þ¤¹¡£ ¤½¤ÎÄÉ²Ãµ¡Ç½¤Ë²Ã¤¨¤Æ¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÏÈó¾ï¤Ë°ÂÁ´¤Ê¥Í¥Ã¥È¥ï¡¼¥¥ó¥° ´Ä¶¤òºî¤ë¤¿¤á¤ÎÅÚÂæ¤òÄó¶¡¤·¤Þ¤¹¡£ ¤·¤Ã¤«¤êºî¤é¤ì¤¿¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤òÈ¼¤¨¤Ð¡¢¤·¤Ã¤«¤êÀßÄê¤µ¤ì¤¿ ¥Þ¥¹¥«¥ì¡¼¥É¥·¥¹¥Æ¥à¤ÈÆâÉô¤Î LAN ¤Î¥»¥¥å¥ê¥Æ¥£¤ò²õ¤¹¤³¤È¤Ï¤«¤Ê¤ê Æñ¤·¤¯¤Ê¤ë¤Ç¤·¤ç¤¦¡£  ¥Þ¥¹¥«¥ì¡¼¥É¤¬ 1ÂÐ1 ¤Î NAT ¤ä¥×¥í¥¥·¤Ë¤è¤ëÌäÂê²ò·èÊýË¡¤È¤É¤Î¤è¤¦¤Ë °ã¤¦¤Î¤«¡¢¤â¤Ã¤ÈÃÎ¤ê¤¿¤¤Êý¤Ï¡¢ FAQ ¤Î¾Ï ¤Î <ref id="what-is-masq" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¡¢¥×¥í¥¥·¤ä NAT ¥µ¡¼¥Ó¥¹¤È¤É¤¦°ã¤¦¤Î¤Ç¤·¤ç¤¦¤«?"> ¤ò¤´Í÷¤¯¤À¤µ¤¤¡£   <sect1> ¸½ºß¤Î¾õÂÖ  IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï²¿Ç¯¤â¤Î´Ö»È¤ï¤ìÂ³¤±¤Æ¤ª¤ê¡¢Linux ¥«¡¼¥Í¥ë 2.2.x ¤ÎÃÊ³¬¤Ë¤¢¤ë¸½ºß¡¢¤È¤Æ¤âÀ®½Ï¤·¤¿¾õÂÖ¤Ë¤¢¤ê¤Þ¤¹¡£ Linux ¥«¡¼¥Í¥ë 1.3.x ¤«¤é¡¢MASQ ¥µ¥Ý¡¼¥È¤¬ÁÈ¤ß¹þ¤Þ¤ì¤Æ¤¤¤Þ¤¹¡£ º£Æü¡¢Â¿¤¯¤Î¸Ä¿Í¤ä¾¦¶È¥Ù¡¼¥¹¤Î¥Ó¥¸¥Í¥¹¤Ë¤ª¤¤¤Æ»È¤ï¤ì¡¢Í¥½¨¤Ê·ë²Ì¤ò ¤ª¤µ¤á¤Æ¤¤¤Þ¤¹¡£  Web ¥Ö¥é¥¦¥¸¥ó¥°¡¢ TELNET, FTP, PING, TRACEROUTE Åù¤Î°ìÈÌÅª¤Ê ¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÍøÍÑ¤Ï¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¾å¤Ç¤¦¤Þ¤¯Æ°ºî¤·¤Þ¤¹¡£ FTP, IRC ¤È¥ê¥¢¥ë¥ª¡¼¥Ç¥£¥ª (Real Audio) ¤Î¤è¤¦¤ÊÂ¾¤Î ¥³¥ß¥å¥Ë¥±¡¼¥·¥ç¥ó¤ÏÅ¬ÀÚ¤Ê IP MASQ ¥â¥¸¥å¡¼¥ë¤ò¥í¡¼¥É¤¹¤ì¤Ð¤¦¤Þ¤¯ Æ°ºî¤·¤Þ¤¹¡£ ¥¹¥È¥ê¡¼¥ß¥ó¥°¥ª¡¼¥Ç¥£¥ª¤Î¤è¤¦¤ÊÂ¾¤Î¥Í¥Ã¥È¥ï¡¼¥¯¤ËÆÃÍ¤Î¥×¥í¥°¥é¥à ( MP3, True Speech ¤Ê¤É) ¤âÆ±ÍÍ¤ËÆ°ºî¤·¤Þ¤¹¡£ ¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Î²¿¿Í¤«¤ÎÍ¥½¨¤Ê¥æ¡¼¥¶¤Ï¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥§¥¢¤Ë ¤ª¤¤¤Æ¤âÎÉ¤¤·ë²Ì¤ò½Ð¤·¤Þ¤·¤¿¡£  ÆâÉô¤È³°Éô¤Î¥¤¡¼¥µ¥Í¥Ã¥È¥Í¥Ã¥È¥ï¡¼¥¯¤Î´Ö¤ò 1 ¤Ä¤À¤±¤Î¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É (NIC) ¤Ë¤Æ IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÆ°ºî¤µ¤»¤ë¤³¤È¤Ï¤ªÁ¦¤á¤Ç¤¤Þ¤»¤ó¡£ ¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï FAQ ¤Î¾Ï¤Î <ref id="aliasing" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï1Ëç¤À¤±¤Î¥¤¡¼¥µ¥Í¥Ã¥È¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÇÆ°ºî¤·¤Þ¤¹¤«?"> ¤Ë¤¢¤ë²òÀâ¤ò¤´Í÷¤¯¤À¤µ¤¤¡£   ¤È¤â¤«¤¯¡¢¤è¤ê´°Á´¤Ê¥µ¥Ý¡¼¥ÈºÑ¤ß¥½¥Õ¥È¥¦¥§¥¢¤Î°ìÍ÷¤Ï <ref id="Supported Client Software" name="¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤ë¥¯¥é¥¤¥¢¥ó¥È¥½¥Õ¥È¥¦¥¨¥¢¤È¤½¤ÎÂ¾¤ÎÀßÄê¾ðÊó"> ¤Î¾Ï¤ò¤´Í÷¤Ë¤Ê¤Ã¤Æ¤¯¤À¤µ¤¤¡£  IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¡¢Â¾¤ÎÍÍ¡¹¤Ê°Û¤Ê¤ë OS ¤ä¥Ï¡¼¥É¥¦¥§¥¢¥×¥é¥Ã¥È¥Õ¥©¡¼¥à ¤Ë¤Æ²ÔÆ¯¤¹¤ë '¥¯¥é¥¤¥¢¥ó¥È¥Þ¥·¥ó' ¤ËÂÐ¤·¡¢¥µ¡¼¥Ð¤È¤·¤ÆÎÉ¹¥¤ËÆ°ºî¤·¤Þ¤¹¡£ °Ê²¼¤ËÆâÉô¤Î MASQ ¤µ¤ì¤¿¥·¥¹¥Æ¥à¾å¤Ç¤ÎÀ®¸ùÎã¤ò¼¨¤·¤Þ¤¹ -  <itemize> <item>Unix: Sun Solaris, *BSD, Linux, Digital UNIX, Åù. <item>Microsoft Windows 2000, NT (3.x ¤È 4.x), 95/98/ME, Windows for Workgroups (TCP/IP ¥Ñ¥Ã¥±¡¼¥¸¤ò´Þ¤à) <item>IBM OS/2 <item>MacTCP °¿¤Ï Open Transport ¤Î¤¤¤º¤ì¤«¤¬²ÔÆ¯¤¹¤ë Apple Macintosh MacOS ¥Þ¥·¥ó <item>¥Ñ¥±¥Ã¥È¥É¥é¥¤¥Ð¤È NCSA Telnet ¥Ñ¥Ã¥±¡¼¥¸¤ò´Þ¤à DOS ¥Ù¡¼¥¹¤Î¥·¥¹¥Æ¥à <item>VAXen <item>Linux ¤È NT ¤¬²ÔÆ¯¤¹¤ë Compaq/Digital Alpha <item>AmiTCP °¿¤Ï AS225-stack ¤ò´Þ¤à Amiga ¥³¥ó¥Ô¥å¡¼¥¿ </itemize>   ¤³¤Î¥ê¥¹¥È¤Ï¤Þ¤À¤Þ¤ÀÂ³¤¤Þ¤¹¡£Í×¤¹¤ë¤Ë¡¢ TCP/IP ¤òÃý¤ì¤ë OS ¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤Ç¤¢¤ì¤Ð¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤È°ì½ï¤Ë»È¤¨¤ë¤Ï¤º¤Ê¤Î¤Ç¤¹¡£   <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬ÍÍÑ¤Ê¾ì¹ç  <itemize> <item>¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤µ¤ì¤¿ Linux ¥Û¥¹¥È¤¬¤¢¤ê¡¢ <item>¤½¤Î Linux box ¤Ë¥í¡¼¥«¥ë¥µ¥Ö¥Í¥Ã¥È¾å¤Ç TCP/IP ÀÜÂ³¤µ¤ì¤¿ ¥³¥ó¥Ô¥å¡¼¥¿¤¬¤¢¤ë¤«¡¢ <item>Linux ¥Û¥¹¥È¤Ë¥â¥Ç¥à¤¬ÀÜÂ³¤µ¤ì¤Æ¤¤¤Æ¡¢Â¾¤Î¥³¥ó¥Ô¥å¡¼¥¿¤ËÀÜÂ³¤¹¤ë PPP °¿¤Ï SLIP ¥µ¡¼¥Ð¤È¤·¤ÆÆ°ºî¤·¡¢ <item>¤½¤ì¤é <bf/Â¾¤Î/ ¥Þ¥·¥ó¤Ï¸ø¼°°¿¤Ï¸ø¶¦¤Ë³ä¤êÅö¤Æ¤é¤ì¤¿ IP ¥¢¥É¥ì¥¹¤ò »ý¤¿¤º (¤¹¤Ê¤ï¤Á¡¢¥×¥é¥¤¥Ù¡¼¥È TCP/IP ÈÖ¹æ¤¬³ä¤êÅö¤Æ¤é¤ì¤Æ¤¤¤ë)¡¢ <item>¤½¤·¤ÆÌÞÏÀ¡¢¤¢¤Ê¤¿¤¬ÄÉ²Ã¤Î¸ø¼°/¸ø¶¦¤Î TCP/IP ¥¢¥É¥ì¥¹¤ò ISP ¤«¤éÆþ¼ê¤·¡¢ Linux ¤ò¥ë¡¼¥¿¤È¤·¤ÆÀßÄê¤¹¤ë¤«°¿¤Ï³°Éô¥ë¡¼¥¿¤ò¹ØÆþ ¤¹¤ë°Ù¤ÎÍ¾Ê¬¤Ê¤ª¶â¤ò»È¤¦¤³¤È¤Ê¤¯¡¢¤½¤ì¤é <bf/Â¾¤Î/ ¥Þ¥·¥ó¤¬ ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤Ç¤¤ë¤è¤¦¤Ë¤·¤¿¤¤¤Î¤Ê¤é¤Ð¡£ </itemize>    <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬ÌµÍÑ¤Ê¾ì¹ç  <itemize> <item>¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤µ¤ì¤Æ¤¤¤ë¥Þ¥·¥ó¤¬¥¹¥¿¥ó¥É¥¢¥í¥ó¤Î Linux ¥Û¥¹¥È¤Î¾ì¹ç¡£ (¤·¤«¤·¤Ê¤¬¤é¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤ò¹½ÃÛ¤¹¤ë¤Î¤ÏÎÉ¤¤¹Í¤¨¤Ç¤¹) ¤¢¤ë¤¤¤Ï¡¢ <item>´û¤Ë ¡ÚÌõÃí: ¥µ¡¼¥Ð¤À¤±¤Ç¤Ê¤¯¡Û <bf/¥¯¥é¥¤¥¢¥ó¥È/¥Þ¥·¥ó¤Î°Ù¤Ë¤â ¸ø¼°¤Ê IP ¥¢¥É¥ì¥¹¤òÊ£¿ô³ä¤êÅö¤Æ¤Æ¤¤¤ë¾ì¹ç¡¢IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÏÉ¬Í× ¤¢¤ê¤Þ¤»¤ó¡£ <item>¤½¤·¤Æ¤â¤Á¤í¤ó¡¢ Linux ¤ò»È¤Ã¤Æ '¥¿¥À¾è¤ê' ¤¹¤ë¹Í¤¨¤¬¹¥¤¤Ç ¤Ê¤¯¡¢Á´¤¯Æ±¤¸¤³¤È¤ò¤¹¤ë¹â²Á¤Ê¾¦ÍÑ¥Ä¡¼¥ë¤ò»È¤¦¤³¤È¤ò¤è¤ê²÷Å¬¤À¤È ´¶¤¸¤ë¾ì¹ç¡£ </itemize>   <sect1> ¤É¤Î¤è¤¦¤Ë¤·¤Æ IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÏÆ°ºî¤¹¤ë¤«  Ken Eves »á¤Ë¤è¤ë¥ª¥ê¥¸¥Ê¥ë¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É FAQ ¤«¤é°úÍÑ¤·¤Þ¤¹ -  <verb> ¤³¤ì¤Ï¤â¤Ã¤È¤â´ÊÃ±¤Ê¹½À®¿Þ¤Ç¤¹ - SLIP/PPP +------------+ +-------------+ ISP ¤Ø | Linux | SLIP/PPP | Anybox | <---------- modem1| #1 |modem2 ----------- modem3| | 111.222.121.212 | | 192.168.0.100 | | +------------+ +-------------+ ¾å¿Þ¤Ë¤ª¤¤¤Æ¡¢ IP_MASQUERADING ¤òÈ¼¤¦ Linux box ¤¬ Linux #1 ¤È¤·¤Æ ¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤Æ¤ª¤ê¡¢ modem1 ¤ò»È¤Ã¤¿ SLIP °¿¤Ï PPP ÀÜÂ³¤Ë¤Æ¡¢ ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ ¤³¤Î¥Þ¥·¥ó¤Ë¤Ï¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤È¤·¤Æ 111.222.121.212 ¤¬³ä¤êÅö¤Æ ¤é¤ì¤Æ¤¤¤Þ¤¹¡£ ¹¹¤ËÈ¯¿®Â¦¤Î¥À¥¤¥ä¥ë¥¤¥ó¤È SLIP °¿¤Ï PPP ÀÜÂ³¤ò¼õ¤±Æþ¤ì¤ë¤¿¤á¤Î modem2 ¤¬ÀÜÂ³¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ Âè2 ¤Î¥·¥¹¥Æ¥à ( Linux ¤¬²ÔÆ¯¤·¤Æ¤¤¤ëÉ¬Í×¤Ï¤¢¤ê¤Þ¤»¤ó) ¤Ï Linux #1 box ¤ØÈ¯¸Æ¤·¡¢ SLIP °¿¤Ï PPP ÀÜÂ³¤ò³«»Ï¤·¤Þ¤¹¡£ ¤³¤Î¥Þ¥·¥ó¤Ï¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤«¤é¥Ñ¥Ö¥ê¥Ã¥¯¤Ê IP ¥¢¥É¥ì¥¹¤¬ *³ä¤êÅö¤Æ¤é¤ì¤Þ¤»¤ó*¤Î¤Ç¡¢¥×¥é¥¤¥Ù¡¼¥È¥¢¥É¥ì¥¹¤Î 192.168.0.100 ¤ò ÍÑ¤¤¤Þ¤¹¡£(²¼µ»²¾È¡£) ¥Þ¥¹¥«¥ì¡¼¥É¤È¥ë¡¼¥Æ¥£¥ó¥°¤ÎÀßÄê¤¬Å¬ÀÚ¤Ç¤¢¤ì¤Ð¡¢¥Þ¥·¥ó "Anybox" ¤Ï ¤¢¤¿¤«¤â¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÄ¾ÀÜÀÜÂ³¤µ¤ì¤¿¤«¤Î¤è¤¦¤Ë¿¶¤ëÉñ¤¦¤³¤È¤¬¤Ç¤¤Þ¤¹ (¤¤¤¯¤Ä¤«¤ÎÎã³°¤Ï¤¢¤ê¤Þ¤¹¤¬)¡£ Pauline Middelink »á¤«¤é¤Î°úÍÑ - Linux #1 box ¤Ï "ANYBOX" ¥Þ¥·¥ó¤Î¥²¡¼¥È¥¦¥§¥¤¤È¤·¤ÆÀßÄê¤µ¤ì¤Æ¤¤¤Ê¤±¤ì¤Ð ¤Ê¤é¤Ê¤¤¤³¤È¤òËº¤ì¤Æ¤Ï¤Ê¤ê¤Þ¤»¤ó¡£ (¤³¤³¤Ç¡¢¤½¤ì¤¬¥Ç¥Õ¥©¥ë¥È¥ë¡¼¥È¤Ê¤Î¤«¡¢ °¿¤ÏÃ±¤Ê¤ë¥µ¥Ö¥Í¥Ã¥È¤Ç¤¢¤ë¤Î¤«¤ÏÌäÂê¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó¡£) ¤â¤· "ANYBOX" ¤¬¤½¤Î¤è¤¦¤Ë¤Ç¤¤Ê¤¤¤Î¤Ç¤¢¤ì¤Ð¡¢ Linux ¥Þ¥·¥ó¤ÏÁ´¤Æ¤Î ¥ë¡¼¥Æ¥£¥ó¥°¤µ¤ì¤¿¥¢¥É¥ì¥¹¤ËÂÐ¤·¤ÆÂåÍý arp ¤ò¥µ¥Ý¡¼¥È¤¹¤ë¤è¤¦ ÀßÄê¤µ¤ì¤ë¤Ù¤¤Ç¤¹¡£ ¤±¤ì¤É¤â¡¢ÂåÍý arp ¤Î¥»¥Ã¥È¥¢¥Ã¥×¤ÈÀßÄê¤Ï¤³¤ÎÊ¸½ñ¤Î°·¤¦ÈÏ°Ï³°¤Ç¤¹¡£ ¼¡¤Ë¤¢¤²¤ë¤Î¤Ï comp.os.linux.networking ¤«¤é¤Î²áµî¤ÎÅê¹Æ¤«¤é¤Î °úÍÑ¤Ç¡¢¾åµÎã¤Ë¹çÃ×¤¹¤ë¤è¤¦¤ËÌ¾Á°¤ò½ñ¤´¹¤¨¡¢ÊÔ½¸¤·¤¿¤â¤Î¤Ç¤¹ - o ANYBOX ¤Ë Linux ¥Þ¥·¥ó¤¬¥²¡¼¥È¥¦¥§¥¤¤À¤È¶µ¤¨¤Æ¤ª¤¤Þ¤¹¡£ o ¥Þ¥·¥ó ANYBOX ¤Ë¡¢ PPP °¿¤Ï SLIP ÀÜÂ³¤µ¤ì¤ë Linux box ¤¬ ¥²¡¼¥È¥¦¥§¥¤¤Ç¤¢¤ë¤³¤È¤ò¶µ¤¨¤Æ¤ª¤¤Þ¤¹¡£ o ANYBOX ¤«¤é Linux box ¤Ë¥Ñ¥±¥Ã¥È¤¬ ÆÏ¤¤¤¿»þ¡¢ Linux box ¤Ï ¥Ñ¥±¥Ã¥È¤ËÂÐ¤·¤Æ¿·¤·¤¤ TCP/IP ¥½¡¼¥¹¥Ý¡¼¥ÈÈÖ¹æ¤ò³ä¤êÅö¤Æ¤Æ¡¢ ¥Ñ¥±¥Ã¥È¥Ø¥Ã¥À¤Ë¼«Ê¬¤Î IP ¥¢¥É¥ì¥¹¤ò½ñ¤¹þ¤ó¤Ç¡¢¸µ¤Î IP ¥¢¥É¥ì¥¹¤òÊÝÂ¸¤·¤Æ¤ª¤¤Þ¤¹¡£ MASQ ¥µ¡¼¥Ð¤Ï¤³¤¦¤·¤Æ½¤Àµ¤·¤¿¥Ñ¥±¥Ã¥È¤ò SLIP/PPP ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤òÄÌ¤¸¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ØÁ÷¿®¤·¤Þ¤¹¡£ o ¥Ñ¥±¥Ã¥È¤¬¥¤¥ó¥¿¡¼¥Í¥Ã¥È ¤«¤é Linux box ¤Ëµ¢¤Ã¤ÆÍè¤¿¤é¡¢ Linux ¤Ï¥Ý¡¼¥ÈÈÖ¹æ¤¬Àè¤Ë³ä¤êÅö¤Æ¤¿¤â¤Î¤Î°ì¤Ä¤Ç¤¢¤ë¤«Ä´¤Ù¤Þ¤¹¡£ ¤â¤·¤½¤¦¤Ê¤é¡¢ MASQ ¥µ¡¼¥Ð¤Ï¸µ¤Î¥Ý¡¼¥È¤È IP ¥¢¥É¥ì¥¹¤òÆÀ¤Æ¡¢ Ìá¤Ã¤ÆÍè¤¿¥Ñ¥±¥Ã¥È¥Ø¥Ã¥À¤Ë¤½¤ì¤òÉü¸µ¤·¡¢¤½¤Î¥Ñ¥±¥Ã¥È¤ò ANYBOX ¤ØÁ÷¤ê¤Þ¤¹¡£ o ¥Ñ¥±¥Ã¥È¤òÁ÷¤é¤ì¤¿¥Û¥¹¥È¤Ï¡¢¤½¤Î°ã¤¤¤ËÁ´¤¯µ¤ÉÕ¤«¤Ê¤¤¤Ç¤·¤ç¤¦¡£ </verb>   <bf>¤â¤¦°ì¤Ä¤Î IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ÎÎã - </bf>  Åµ·¿Åª¤ÊÎã¤ò²¼¿Þ¤Ë¼¨¤·¤Þ¤¹ -  | | <- External Network ----> | | | </verb> --> <verb> +----------+ | | ¥¤¡¼¥µ¥Í¥Ã¥È | A-box |:::::: | |.2 : 192.168.0.x +----------+ : : +----------+ PPP +----------+ : .1 | Linux | link | | :::::::| Masq-Gate|:::::::::::::::::::// ¥¤¥ó¥¿¡¼¥Í¥Ã¥È | B-box |:::::: | | 111.222.121.212 | |.3 : +----------+ +----------+ : (¥Þ¥¹¥«¥ì¡¼¥É : ¥²¡¼¥È¥¦¥§¥¤) +----------+ : | | : | C-box |:::::: | |.4 +----------+ | | | | <-ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯--> | | <- ³°Éô¥Í¥Ã¥È¥ï¡¼¥¯ ----> | | | </verb>  ¤³¤ÎÎã¤Ç¤Ï¡¢4Âæ¤Î¥³¥ó¥Ô¥å¡¼¥¿¥·¥¹¥Æ¥à¤¬ÀÜÂ³¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ ¤Þ¤¿¤ª¤½¤é¤¯¤½¤ÎÂ¾¤Ë¡¢¿Þ¤Î¤â¤Ã¤È±¦Â¦¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø¤Î PPP ÀÜÂ³ ¤òÄó¶¡¤¹¤ë¥Û¥¹¥È¤¬¡¢¤½¤·¤Æ¤µ¤é¤Ë¤½¤Î±¦Â¦¤Ë¤Ï¤¢¤Ê¤¿¤¬¾ðÊó¤ò¤ä¤ê¼è¤ê ¤·¤¿¤¤¤È»×¤¦¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î¥ê¥â¡¼¥È¥Û¥¹¥È¤¬Â¸ºß¤¹¤ë¤³¤È¤Ç¤·¤ç¤¦¡£ Linux ¥·¥¹¥Æ¥à <bf><tt>masq-gate</tt></bf> ¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò¹Ô¤¦ ¥²¡¼¥È¥¦¥§¥¤¤Ç¡¢¥Þ¥·¥ó <bf><tt>A-box</tt></bf>¡¢<bf><tt>B-box</tt></bf> µÚ¤Ó <bf><tt>C-box</tt></bf> ¤«¤é¹½À®¤µ¤ì¤ëÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤«¤é ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø¤ÎÀÜÂ³¤ò¹Ô¤¤¤Þ¤¹¡£ ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Ï <htmlurl url="http://www.cis.ohio-state.edu/htbin/rfc/rfc1918.html" name="RFC-1918 ¤Ë¤Æ³ä¤êÅö¤Æ¤é¤ì¤¿´ö¤Ä¤«¤Î¥×¥é¥¤¥Ù¡¼¥È¥Í¥Ã¥È¥ï¡¼¥¯¥¢¥É¥ì¥¹"> ¤Î°ì¤Ä (¤³¤ÎÎã¤Ç¤Ï 192.168.0.0) ¤ò»È¤¤¤Þ¤¹¡£ Linux box ¤Ï TCP/IP ¥¢¥É¥ì¥¹ 192.168.0.1 ¤ò»ý¤Á¡¢¤½¤ÎÂ¾¤Î¥Û¥¹¥È¤Ï °Ê²¼¤Î¥¢¥É¥ì¥¹¤ò»ý¤Ã¤Æ¤¤¤Þ¤¹ - <itemize> <item>A-Box: 192.168.0.2 <item>B-Box: 192.168.0.3 <item>C-Box: 192.168.0.4 </itemize>  3Âæ¤Î¥Þ¥·¥ó <tt>A-box</tt> ¡¢<tt>B-box</tt> µÚ¤Ó <tt>C-box</tt>¤Ï TCP/IP ¤òÏÃ¤¹¤³¤È¤¬¤Ç¤¤ì¤Ð¤É¤ó¤Ê¥ª¥Ú¥ì¡¼¥Æ¥£¥ó¥°¥·¥¹¥Æ¥à¤¬Æ°ºî¤·¤Æ ¤¤¤Æ¤â¹½¤¤¤Þ¤»¤ó¡£ OS ¤Ï <bf>Windows 95</bf> ¡¢ <bf>Macintosh MacTCP °¿¤Ï OpenTransport</bf> °¿¤ÏÊÌ¤Î <bf>Linux box</bf> ¤Ê¤É¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤ÎÂ¾¤Î¥Þ¥·¥ó¤ËÀÜÂ³ ¤Ç¤¤ë¤â¤Î¤Ç¤¹¡£ Æ°ºîÃæ¡¢¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¥·¥¹¥Æ¥à°¿¤Ï <tt>MASQ-gate</tt> ¤Ï¤³¤ì¤é ÆâÉôÀÜÂ³¤ÎÁ´¤Æ¤ò <tt>masq-gate</tt> ¼«¿È¤«¤éÈ¯À¸¤¹¤ë¤è¤¦¤Ë¸«¤¨¤ë¤è¤¦¤Ë ÊÑ´¹¤·¤Þ¤¹¡£ ¼¡¤Ë¥Þ¥¹¥«¥ì¡¼¥É¤Ï¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ÀÜÂ³¤ØÌá¤Ã¤Æ¤¯¤ë¥Ç¡¼¥¿¤¬Ãæ·Ñ¤µ¤ì¤Æ¡¢ È¯¿®¸µ¤Î¥·¥¹¥Æ¥à¤ØÌá¤µ¤ì¤ë¤è¤¦¤Ë½èÍý¤·¤Þ¤¹¡£ ¤³¤ì¤Ë¤è¤ê¡¢ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¾å¤Î¥·¥¹¥Æ¥à¤«¤é¤Ï¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø¤ÎÄ¾ÀÜ ·ÐÏ©¤¬¤¢¤ë¤è¤¦¤Ë¸«¤¨¡¢¥Ç¡¼¥¿¤¬¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¤³¤È¤Ï°Õ¼±¤·¤Þ¤»¤ó¡£ ¤³¤ì¤ò "Æ©²áÅª¤Ê" ÀÜÂ³¤È¸Æ¤Ó¤Þ¤¹¡£  Ãí°Õ - °Ê²¼¤Ë¼¨¤¹¥È¥Ô¥Ã¥¯¤Î¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï <ref id="FAQ" name="¤è¤¯¤¢¤ë¼ÁÌä (FAQ)"> ¤ò¤´Í÷¤¯¤À¤µ¤¤ -  <itemize> <item>NAT, MASQ ¤È¥×¥í¥¥·¥µ¡¼¥Ð¤È¤ÎÁê°ãÅÀ <item>¥Ñ¥±¥Ã¥È¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤ÎÆ°ºî </itemize> <label id="2.2.x-Requirements">   <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò Linux 2.2.x ¤Ç»È¤¦¤¿¤á¤ÎÉ¬Í×¾ò·ï  <quote> <bf> ** ºÇ¿·¤Î¾ðÊó¤Ë¤Ä¤¤¤Æ¤Ï <url url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ** </bf> </quote>  <itemize> <item>¥«¡¼¥Í¥ë 2.2.x ¥½¡¼¥¹¤Ï <htmlurl url="http://www.kernel.org/" name="http://www.kernel.org/"> ¤«¤éÆþ¼ê²ÄÇ½¤Ç¤¹¡£ &nl; Ãí°Õ #1 - Linux 2.2.x ¥«¡¼¥Í¥ë¤Î 2.2.16 °ÊÁ°¤Î¥Ð¡¼¥¸¥ç¥ó¤Ï TCP ÀÜÂ³¤Ë ¤ª¤¤¤Æ¥ë¡¼¥È¸¢¸Â¤¬ºñ¼è¤µ¤ì¤ë¼åÅÀ¤¬¤¢¤ê¡¢ 2.2.11 °ÊÁ°¤Î¥Ð¡¼¥¸¥ç¥ó¤Ë¤Ï IPCHAINS ¤Î¥Õ¥é¥°¥á¥ó¥Æ¡¼¥·¥ç¥ó¤Ë¥Ð¥°¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤Î¤¿¤á¡¢¤³¤ì¤é¤Î¥Ð¡¼¥¸¥ç¥ó¤Ç¶¯ÎÏ¤Ê IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÆ°ºî ¤µ¤»¤ë¿Í¤Ï¡¢¹¶·â¤ËÂÐ¤·¤ÆÌµËÉÈ÷¤Ç¤¹¡£ ¥«¡¼¥Í¥ë¤ò½¤ÀµºÑ¤ß¥Ð¡¼¥¸¥ç¥ó¤Ø¥¢¥Ã¥×¥°¥ì¡¼¥É¤·¤Æ¤¯¤À¤µ¤¤¡£ Ãí°Õ #2 - Redhat 5.2 ¤Î¤è¤¦¤Ê¡¢Â¿¤¯¤Î¤è¤ê¿·¤·¤¤ <ref id="MASQ-supported-Distributions" name="¥Þ¥¹¥«¥ì¡¼¥É¥µ¥Ý¡¼¥ÈºÑ¤ß¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó"> ¤Ï¡¢ Linux 2.2.x ¤ËÂÐ±þ¤·¤Æ¤¤¤Þ¤»¤ó¡£ DHCP, NetUtils Åù¤Î¥Ä¡¼¥ë¤Ï¥¢¥Ã¥×¥°¥ì¡¼¥É¤ÎÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¾ÜºÙ¤Ï¤³¤Î HOWTO ¤Ë¤¢¤ê¤Þ¤¹¡£ <item>¥í¡¼¥É²ÄÇ½¤Ê¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¡¢¹¥¤Þ¤·¤¯¤Ï 2.1.121 °Ê¹ß¡£ <htmlurl url="http://www.pi.se/blox/modutils/index.html" name="http://www.pi.se/blox/modutils/index.html"> °¿¤Ï <htmlurl url="ftp://ftp.ocs.com.au/pub/modutils/" name="ftp://ftp.ocs.com.au/pub/modutils/"> ¤«¤éÆþ¼ê²ÄÇ½¤Ç¤¹¡£ <item><url url="http://www.linuxdoc.org/HOWTO/NET3-4-HOWTO.html" name="Linux NET-3-4 HOWTO"> µÚ¤Ó <url url="http://www.linuxdoc.org/LDP/nag/nag.html" name="Network Administrator's Guide">¤Ç°·¤ï¤ì¤Æ¤¤¤ëTCP/IP ¥Í¥Ã¥È¥ï¡¼¥¯ °¿¤Ï LAN &nl; <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS"> ¤Î¥É¥¥å¥á¥ó¥È¤âÄ´¤Ù¤Æ¤ª¤¤¤Æ¤¯¤À¤µ¤¤¡£ TrinityOS ¤Ï Linux ¥Í¥Ã¥È¥ï¡¼¥¥ó¥°¤Ë¤ª¤±¤ë¤È¤Æ¤â¹ÈÏ°Ï¤Ê¥¬¥¤¥É¤Ç¤¹¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¡¢¥»¥¥å¥ê¥Æ¥£¡¢ DNS, DHCP, Sendmail, PPP, Diald, NFS, IPSEC ¥Ù¡¼¥¹¤Î VPN, ¤Þ¤¿¥Ñ¥Õ¥©¡¼¥Þ¥ó¥¹¤Î¾Ï¤¬¾¯¡¹µó¤²¤é¤ì¤Þ¤¹¡£ 50 °Ê¾å¤Î¾Ï¤¬¤¢¤ê¤Þ¤¹¡£ <item>Linux ¥Û¥¹¥È¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø¤ÎÀÜÂ³¤Ë´Ø¤·¤Æ¤Ï¡¢°Ê²¼¤ÎÊ¸½ñ¤Ë¤Æ °·¤ï¤ì¤Æ¤¤¤Þ¤¹ - <url url="http://www.linuxdoc.org/HOWTO/ISP-Hookup-HOWTO.html" name="Linux ISP Hookup HOWTO">, <url url="http://www.linuxdoc.org/HOWTO/PPP-HOWTO.html" name="Linux PPP HOWTO">, <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS">, <url url="http://www.linuxdoc.org/HOWTO/mini/DHCP/index.html" name="Linux DHCP mini-HOWTO">, <url url="http://www.linuxdoc.org/HOWTO/Cable-Modem/index.html" name="Linux Cable Modem mini-HOWTO"> ¤½¤·¤Æ <url url="http://www.linuxdoc.org/HOWTO/mini/ADSL.html" name="http://www.linuxdoc.org/HOWTO/mini/ADSL.html"> <item>IPCHAINS 1.3.9 °Ê¹ß¤Î¥Ð¡¼¥¸¥ç¥ó¤Ï <htmlurl url="http://netfilter.filewatcher.org/ipchains/" name="http://netfilter.filewatcher.org/ipchains/"> ¤«¤éÆþ¼ê²ÄÇ½¤Ç¤¹¡£ &nl; ¥Ð¡¼¥¸¥ç¥ó¤ÎÉ¬Í×¾ò·ï¤Ë´Ø¤¹¤ë¹¹¤Ê¤ë¾ðÊó¤Ë´Ø¤·¤Æ¤Ï¡¢ºÇ¿·¤Î IPCHAINS HOWTO Åù¤Ï <url url="http://netfilter.filewatcher.org/ipchains/" name="Linux IP Firewalling Chains page"> ¤«¤éÆÀ¤é¤ì¤Þ¤¹¡£ <item>¿·¤·¤¤¥«¡¼¥Í¥ë¤ÎÀßÄê¡¢¥³¥ó¥Ñ¥¤¥ëµÚ¤Ó¥¤¥ó¥¹¥È¡¼¥ë¤Î¥Î¥¦¥Ï¥¦¤Ï <url url="http://www.linuxdoc.org/HOWTO/Kernel-HOWTO.html" name="Linux Kernel HOWTO"> ¤Ë¾Ü¤·¤¯½ñ¤«¤ì¤Æ¤¤¤Þ¤¹¡£ <item>¤½¤ÎÂ¾½ô¡¹¤Îµ¡Ç½¤ò¼Â¸½¤¹¤ëÉÕ²ÃÅª¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¥Ä¡¼¥ë¤Ï°Ê²¼¤«¤é ¥À¥¦¥ó¥í¡¼¥É¤·¤Æ»ÈÍÑ¤Ç¤¤Þ¤¹ - <itemize> TCP/IP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥ÀËô¤Ï¥ê¥À¥¤¥ì¥¯¥¿ - <itemize> <item><url url="http://juanjox.kernelnotes.org/" name="IP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥° (IPMASQADM) - ¤ªÁ¦¤á"> Ëô¤ÏÈà¤Î¸Å¤¤ <htmlurl url="http://www.geocities.com/SiliconValley/Campus/4869/" name="¥ß¥é¡¼"> ¡£ </itemize> </itemize> ICQ MASQ ¥â¥¸¥å¡¼¥ë <itemize> <item><htmlurl url="http://members.tripod.com/~djsf/masq-icq/" name="Andrew Deryabin ¤Î ICQ MASQ ¥â¥¸¥å¡¼¥ë "> </itemize> PORTFW FTP ¥½¥ê¥å¡¼¥·¥ç¥ó(ÌäÂê²ò·èÊýË¡) - <itemize> <item>¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥Þ¥·¥ó¤Ø FTP ¤ò¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤¹¤ë ¤¿¤á¤Î¡¢2.2.x ¤È 2.0.x ¤ÎÎ¾Êý¤Î¥«¡¼¥Í¥ë¤Î MASQ ¥â¥¸¥å¡¼¥ë¤Î ÌäÂê²ò·èÊýË¡¤¬¤¢¤ê¤Þ¤¹¡£ ¾ÜºÙ¤Ï <htmlurl url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤Î¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¥Ú¡¼¥¸¤ò¤´Í÷¤¯¤À¤µ¤¤¡£ <item> SuSe ¤Ë¡¢ÆâÉô¤Î FTP ¥µ¡¼¥Ð¤ËÅþÃ£¤¹¤ë°Ù¤Î¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Ë »÷¤¿µ¡Ç½¤òÄó¶¡¤¹¤ë´°Á´¤Ê FTP ¥×¥í¥¥·¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤¬¤¢¤ê¤Þ¤¹¡£ ¾ÜºÙ¤Ï <htmlurl url="http://www.suse.de/en/support/proxy_suite/index.html" name="SuSe Proxy URL"> ¤ò¤´Í÷¤¯¤À¤µ¤¤¡£ </itemize> ¿¿¤Î 1 ÂÐ 1 NAT ¤Î°Ù¤Î IPROUTE2, ¥Ý¥ê¥·¡¼¥Ù¡¼¥¹¤Î (È¯¿®¸µ) ¥ë¡¼¥Æ¥£¥ó¥°¡¢ ¤½¤·¤Æ ¥È¥é¥Õ¥£¥Ã¥¯¥·¥§¥¤¥Ô¥ó¥° - <itemize> <item><htmlurl url="ftp://ftp.inr.ac.ru/ip-routing/" name="ftp://ftp.inr.ac.ru/ip-routing"> <item>Ê¸½ñ¤Ï <htmlurl url="http://www.compendium.com.ar/policy-routing.txt" name="http://www.compendium.com.ar/policy-routing.txt"> ¤è¤êÆþ¼ê²ÄÇ½¤Ç¤¹¡£ <item><htmlurl url="http://www.linuxdoc.org/HOWTO/Adv-Routing-HOWTO.html" name="Advanced Routing HOWTO"> <item><htmlurl url="http://defiant.coinet.com/iproute2/"> ¥½¡¼¥¹¥³¡¼¥É¤Î¥ß¥é¡¼¤Ï°Ê²¼¤Ë¤¢¤ê¤Þ¤¹ - <htmlurl url="ftp://linux.wauug.org/pub/net" name="ftp://linux.wauug.org/pub/net"> <htmlurl url="ftp://ftp.nc.ras.ru/pub/mirrors/ftp.inr.ac.ru/ip-routing/" name="ftp://ftp.nc.ras.ru/pub/mirrors/ftp.inr.ac.ru/ip-routing/"> <htmlurl url="ftp://ftp.gts.cz/MIRRORS/ftp.inr.ac.ru/" name="ftp://ftp.gts.cz/MIRRORS/ftp.inr.ac.ru/"> <htmlurl url="ftp://ftp.funet.fi/pub/mirrors/ftp.inr.ac.ru/ip-routing/" name="ftp://ftp.funet.fi/pub/mirrors/ftp.inr.ac.ru/ip-routing/ (STM1 to USA)"> <htmlurl url="ftp://sunsite.icm.edu.pl/pub/Linux/iproute/" name="ftp://sunsite.icm.edu.pl/pub/Linux/iproute/"> <htmlurl url="ftp://ftp.sunet.se/pub/Linux/ip-routing/" name="ftp://ftp.sunet.se/pub/Linux/ip-routing/"> <htmlurl url="ftp://ftp.nvg.ntnu.no/pub/linux/ip-routing/" name="ftp://ftp.nvg.ntnu.no/pub/linux/ip-routing/"> <htmlurl url="ftp://ftp.crc.ca/pub/systems/linux/ip-routing/" name="ftp://ftp.crc.ca/pub/systems/linux/ip-routing/"> <htmlurl url="ftp://ftp.paname.org" name="ftp://ftp.paname.org (France)"> <htmlurl url="ftp://donlug.ua/pub/mirrors/ip-route/" name="ftp://donlug.ua/pub/mirrors/ip-route/"> <htmlurl url="ftp://omni.rk.tusur.ru/mirrors/ftp.inr.ac.ru/ip-routing/" name="ftp://omni.rk.tusur.ru/mirrors/ftp.inr.ac.ru/ip-routing/"> RPM ¥Ñ¥Ã¥±¡¼¥¸¤Ï <htmlurl url="ftp://omni.rk.tusur.ru/Tango/" name="ftp://omni.rk.tusur.ru/Tango/"> ¤È <htmlurl url="ftp://ftp4.dgtu.donetsk.ua/pub/RedHat/Contrib-Donbass/KAD/" name="ftp://ftp4.dgtu.donetsk.ua/pub/RedHat/Contrib-Donbass/KAD/"> ¤«¤éÆþ¼ê²ÄÇ½¤Ç¤¹¡£ </itemize> ¾ÜºÙ¤Ê¾ðÊó¤È¤½¤ÎÂ¾¥Ñ¥Ã¥ÁÅù¤Ï <url url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤ò¤´Í÷¤¯¤À¤µ¤¤¡£ </itemize> <label id="2.3.x/2.4.x-Requirements">   <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò Linux 2.3.x µÚ¤Ó 2.4.x ¤Ç»È¤¦¤¿¤á¤ÎÉ¬Í×¾ò·ï  <quote> <bf> ** ºÇ¿·¾ðÊó¤Ë¤Ä¤¤¤Æ¤Ï <url url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ** </bf> </quote> <label id="NetFilter">  <itemize> <item>¸½ºß¡¢ºÇ¿·¤Î 2.3.x µÚ¤Ó 2.4.x ¥«¡¼¥Í¥ë¤Ï NetFilter ¤È¸Æ¤Ð¤ì¤ë Á´¤¯¿·¤·¤¤¥·¥¹¥Æ¥à¤¬Æ³Æþ¤µ¤ì¤Æ¤¤¤Þ¤¹ ( 2.2.x ¥«¡¼¥Í¥ë¤Ë¤ª¤±¤ë IPCHAINS ¤Ë»÷¤Æ¤¤¤Þ¤¹)¡£ ¹¬¤¤¡¢ IPCHAINS ¤Ø¤Î°Ü¹Ô¤Î»þ¤È¤Ï<bf>°Û¤Ê¤ê</bf>¡¢¿·¤·¤¤ NetFilter ¥Ä¡¼¥ë¤Ï¡¢¸½¾õ¤Î IPCHAINS ¤È IPFWADM ¤ÎÊ¸Ë¡¤Ë*´°Á´¤Ë*Å¬¹ç¤Ç¤¤ë ¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¤ò»ý¤Ã¤Æ¤¤¤ë¤Î¤Ç¡¢¸Å¤¤¥¹¥¯¥ê¥×¥È¤ò½ñ¤´¹¤¨¤ëÉ¬Í×¤Ï ¤¢¤ê¤Þ¤»¤ó¡£ ¤µ¤Æ¡¢¤É¤ì¤Û¤É¤¢¤Ê¤¿¤¬¤´¼«¿È¤Î¸Å¤¤¥ë¡¼¥ë¥»¥Ã¥È¤ÎÎÉ¤µ¤Ë°ÍÂ¸¤·¤Æ¤¤¤¿¤È ¤·¤Æ¤â¡¢¤½¤ì¤ò½ñ¤´¹¤¨¤ë¤³¤È¤Ë¤è¤ë´ö¤Ä¤«¤ÎÍøÅÀ (¥¹¥Ô¡¼¥É¡¢¿·¤·¤¤ µ¡Ç½Åù) ¤¬¤¢¤ê¤Þ¤¹¡£ ¥æ¡¼¥¶¡¼¤ËÂ¿¤¯¤Î½ÀÆðÀ¤È¾Íè¤Îµ¡Ç½Åù¤òÄó¶¡¤¹¤ë¡¢Â¿¤¯¤Î ´ðËÜÀß·×Åª¤ÊÊÑ¹¹¤¬¡¢¿·¤·¤¤¥³¡¼¥É¤Ë¤è¤ê¤â¤¿¤é¤µ¤ì¤Þ¤·¤¿¡£ ¿·¤·¤¤µ¡Ç½¤ÎÃæ¤Ë¤Ï¤³¤ó¤Ê»¿ÈÝÎ¾ÏÀ¤ò´Þ¤ó¤Ç¤¤¤ë¤â¤Î¤â¤¢¤ê¤Þ¤¹ - <bf>»¿À®°Õ¸« - </bf> <itemize> <item>TCP/IP ¥µ¥Ö¥Í¥Ã¥È¤Ë¿¿¤Î 1:1 NAT µ¡Ç½¤òÄó¶¡¤·¤Þ¤¹¡£ <item>¥Ó¥ë¥È¥¤¥ó¥¿¥¤¥×¤Î¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Ï¤â¤Ï¤ä IPMASQADM ¤òÉ¬Í×¤È¤·¤Þ¤»¤ó¡£ <item>¿·¤·¤¤¥Ó¥ë¥È¥¤¥ó¥¿¥¤¥×¤Î¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°µ¡Ç½¤Ï¡¢³°Éô¤È ÆâÉô¤Î¥È¥é¥Õ¥£¥Ã¥¯¤ÎÎ¾Êý¤ËÂÐ¤·¤ÆÆ°ºî¤·¤Þ¤¹¡£ ¤³¤Î¤³¤È¤Ï³°Éô¥È¥é¥Õ¥£¥Ã¥¯¤Ë PORTFW ¤ò»È¤¤¡¢ÆâÉô¥ê¥À¥¤¥ì¥¯¥·¥ç¥ó¤Ë REDIR ¤ò»È¤Ã¤Æ¤¤¤¿¥æ¡¼¥¶¡¼¤Ë¤È¤Ã¤Æ¡¢¤â¤Ï¤ä¤³¤ÎÆó¤Ä¤Î¥Ä¡¼¥ë¤ò»È¤¦ É¬Í×¤¬¤Ê¤¤¤³¤È¤ò°ÕÌ£¤·¤Þ¤¹¡£ <item>´°Á´¤Ë¥Ý¥ê¥·¡¼¥Ù¡¼¥¹¤Î¥ë¡¼¥Æ¥£¥ó¥°µ¡Ç½ (¥½¡¼¥¹¥Ù¡¼¥¹¤Î TCP/IP ¥¢¥É¥ì¥¹¥ë¡¼¥Æ¥£¥ó¥°) ¡£ <item>¤è¤ê¹âÂ®¤Ê¥Ñ¥±¥Ã¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤òÉ½¤¹ Linux¤Î FastRoute µ¡Ç½¤È¤Î¸ß´¹À ( Linux ¥Í¥Ã¥È¥ï¡¼¥¯¥¹¥¤¥Ã¥Á¥ó¥°¤È¤·¤ÆÃÎ¤é¤ì¤Æ¤¤¤Þ¤¹) ¡£ <item>TCP/IP v4, v6, ¤½¤·¤Æ DECnet ¤Ç¤µ¤¨¤â´°Á´¤Ë¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£  <item>PPP0, PPP1, Åù¤ò»Ø¤¹ ppp* ¤Î¤è¤¦¤Ê¥ï¥¤¥ë¥É¥«¡¼¥É ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ <item>input ¤È output ¤ÎÎ¾Êý¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤ËÂÐ¤·¤Æ¥Õ¥£¥ë¥¿¥ê¥ó¥° ¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ <item>¥¤¡¼¥µ¥Í¥Ã¥È¤Î MAC ¥Õ¥£¥ë¥¿¥ê¥ó¥°¡£ <item>¥µ¡¼¥Ó¥¹ÉÔÇ½¹¶·â (DoS: Denial of Service) ¥Ñ¥±¥Ã¥È¥ì¡¼¥È¤Î À©¸Â¡£ <item>¤È¤Æ¤â¥·¥ó¥×¥ë¤ÇÈÆÍÑÅª¤Ê¾õÂÖ¸¡ººµ¡Ç½  <item>¥Ñ¥±¥Ã¥È REJECT ¤Ï¸½ºß¥æ¡¼¥¶¡¼¤¬ÁªÂò²ÄÇ½¤Ê ICMP ¥á¥Ã¥»¡¼¥¸¤Î ÊÖÅú¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ <item>ÊÑ¹¹²ÄÇ½¤Ê¥í¥®¥ó¥°¥ì¥Ù¥ë (°Û¤Ê¤ë¥Ñ¥±¥Ã¥È¤¬°Û¤Ê¤ë SYSLOG ¥ì¥Ù¥ë ¤ËÅþÃ£¤Ç¤¤Þ¤¹) </itemize> <bf>È¿ÂÐ°Õ¸« - </bf> <itemize> <item>Netfilter ¤ÏÁ´¤¯¿·¤·¤¤¥¢¡¼¥¥Æ¥¯¥Á¥ã¤À¤«¤é¡¢ËØ¤ÉÁ´¤Æ¤Î¸Å¤¤ MASQ ¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¤Ï½ñ¤´¹¤¨¤ëÉ¬Í×¤¬À¸¤¸¤Þ¤¹¡£ ¤¹¤Ê¤ï¤Á¡¢ FTP ¥â¥¸¥å¡¼¥ë¤Ï¥¢¥Ã¥×¥Ç¡¼¥È¤µ¤ì¤Þ¤·¤¿¤¬¡¢°Ê²¼¤Î¥â¥¸¥å¡¼¥ë ¤Ï½ñ¤´¹¤¨¤¬ºÑ¤ó¤Ç¤¤¤Þ¤»¤ó: ip_masq_cuseeme.o ip_masq_icq.o ip_masq_quake.o ip_masq_user.o ip_masq_irc.o ip_masq_raudio.o ip_masq_vdolive.o ¤³¤Î°Ü¿¢¤ò¤É¤¦¤¹¤ë¤«¤Ë¤Ä¤¤¤Æ¤ÎÊ¸½ñ¤Ï <url url="http://netfilter.kernelnotes.org/unreliable-guides/netfilter-hacking-HOWTO-5.html" name="http://netfilter.kernelnotes.org/unreliable-guides/netfilter-hacking-HOWTO-5.html"> ¤Ë¤¢¤ê¤Þ¤¹¡£ »þ´Ö¤¬¤¢¤ê¤Þ¤·¤¿¤é¡¢¤³¤ì¤é¤òÁá¤¯°Ü¿¢¤¹¤ë¤³¤È¤Ç¤¢¤Ê¤¿¤ÎºÍÇ½¤Ï¹â¤¯É¾²Á ¤µ¤ì¤ë¤³¤È¤Ç¤·¤ç¤¦¡£ </itemize> ¤³¤Î¥Ð¡¼¥¸¥ç¥ó¤Î HOWTO ¤Ç¤Ï¡¢ Netfilter ¤Ï¥«¥Ð¡¼¤·¤Æ¤¤¤Þ¤»¤ó¡£ °ìÃ¶ Netfilter ¤ÎÆÃÄ§¤¬¸ÇÄê¤µ¤ì¤ì¤Ð¡¢ -¤³¤Î- HOWTO ¤ËÄÉ²Ã¤µ¤ì¤ë¤«¡¢ ¿·¤¿¤Ê HOWTO ¤Ë½ñ¤«¤ì¤ë¤Ç¤·¤ç¤¦¡£ ¤½¤ì¤Þ¤Ç¤Ï¡¢°Ê²¼¤Ë¼¨¤¹ Netfilter ¤ÎÊ¸½ñ¤Ø¤Î¥ê¥ó¥¯¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ¸½¾õ¤Ç¤Ï¡¢¿·¤·¤¤ Netfilter ¥³¡¼¥É¤Ï¡¢º£Æü IPCHAINS ¥æ¡¼¥¶¤¬ÍÑ¤¤¤ë ÀßÄê¤È¥È¥é¥Ö¥ë¥·¥å¡¼¥Æ¥£¥ó¥°¤Î 95% Æ±¤¸¤â¤Î¤ò¶¦Í¤Ç¤¤Æ¤¤¤Þ¤¹¡£ ¤Ç¤¹¤Î¤Ç¡¢¤³¤Î HOWTO ¤ÏÌ¤¤À Netfilter ¤Ë¤è¤ë¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤È NAT ¥æ¡¼¥¶¡¼¤Ë¤È¤Ã¤Æ¤âÈó¾ï¤ËÅ¬ÀÚ¤Ç¤¹¡£ <htmlurl url="http://netfilter.filewatcher.org/unreliable-guides/index.html" name="http://netfilter.filewatcher.org/unreliable-guides/index.html"> ¤½¤·¤Æ¤è¤ê¾ÜºÙ¤Ë¤Ï <htmlurl url="http://netfilter.filewatcher.org/unreliable-guides/NAT-HOWTO.html" name="http://netfilter.filewatcher.org/unreliable-guides/NAT-HOWTO.html"> ¤ò¤É¤¦¤¾¡£ </itemize> ¾ÜºÙ¤Ê¾ðÊó¤È¤½¤ÎÂ¾¥Ñ¥Ã¥ÁÅù¤Ï <url url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤ò¤´Í÷¤¯¤À¤µ¤¤¡£ <label id="2.0.x-Requirements">   <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò Linux 2.0.x ¤Ç»È¤¦¤¿¤á¤ÎÉ¬Í×¾ò·ï  <quote> <bf> ** ºÇ¿·¾ðÊó¤Ï <url url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ** </bf> </quote>  <itemize> <item>¤¢¤é¤æ¤ë¿¿¤ÃÅö¤Ê¥³¥ó¥Ô¥å¡¼¥¿¥Ï¡¼¥É¥¦¥§¥¢¡£¾ÜºÙ¤Ï <ref id="FAQ-Hardware" name="¥Ï¡¼¥É¥¦¥§¥¢ FAQ"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ <item><htmlurl url="http://www.kernel.org/" name="http://www.kernel.org/"> ¤«¤éÆþ¼ê²ÄÇ½¤Ê 2.0.x ¤Î¥½¡¼¥¹¡£ &nl; (Redhat 5.2 ¤Î¤è¤¦¤Ê¡¢Â¿¤¯¤ÎºÇ¶á¤Î Linux ¤Î <ref id="MASQ-supported-Distributions" name="¥Þ¥¹¥«¥ì¡¼¥É¥µ¥Ý¡¼¥ÈºÑ¤ß¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó"> ¤Ï¡¢¥³¥ó¥Ñ¥¤¥ëºÑ IP ¥Þ¥¹¥«¥ì¡¼¥É¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¤ò´Þ¤ó¤Ç¤¤¤Þ¤¹¡£ ¤³¤Î¤è¤¦¤Ê¾ì¹ç¡¢¿·¤¿¤Ë Linux ¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤¹¤ëÉ¬Í×¤Ï¤¢¤ê¤Þ¤»¤ó¡£ ¤â¤·¡¢¥«¡¼¥Í¥ë¤ò¥¢¥Ã¥×¥°¥ì¡¼¥É¤¹¤ë¤Ê¤é¡¢Â¾¤Ë¿·¤¿¤Ê¥×¥í¥°¥é¥à¤òÉ¬Í×¤È ¤¹¤ë¤«¡¢°¿¤Ï¥¢¥Ã¥×¥°¥ì¡¼¥É¤¹¤ëÉ¬Í×¤¬¤¢¤ë¤³¤È¤ò°Õ¼±¤¹¤Ù¤¤Ç¤·¤ç¤¦¡£ (¤³¤Î HOWTO Ê¸½ñÆâ¤Ë¤Æ¸å½Ò¤·¤Þ¤¹¡£) <item>¥í¡¼¥É²ÄÇ½¤Ê¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¡¢¹¥¤Þ¤·¤¯¤Ï 2.1.85 °Ê¹ß¡£<htmlurl url="http://www.pi.se/blox/modutils/index.html" name="http://www.pi.se/blox/modutils/index.html"> °¿¤Ï <htmlurl url="ftp://ftp.ocs.com.au/pub/modutils/" name="ftp://ftp.ocs.com.au/pub/modutils/"> ¤è¤êÆþ¼ê²ÄÇ½¤Ç¤¹¡£ &nl; (ºÇÄã¤Ç¤â modules-1.3.57 ¤ÏÉ¬Í×¤Ç¤¹¡£) <item><url url="http://www.linuxdocs.org/NET3-4-HOWTO.html" name="Linux NET-3-4 HOWTO"> µÚ¤Ó <url url="http://www.linuxdoc.org/LDP/nag/nag.html" name="Network Administrator's Guide"> ¤Ç°·¤ï¤ì¡¢²ÔÆ¯¤·¤Æ¤¤¤ë¡¢ TCP/IP ¥Í¥Ã¥È¥ï¡¼¥¯¡£ &nl; ¤Þ¤¿ <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS"> Ê¸½ñ¤âÄ´¤Ù¤Æ¤ª¤¤¤Æ¤¯¤À¤µ¤¤¡£ TrinityOS ¤Ï Linux ¥Í¥Ã¥È¥ï¡¼¥¥ó¥°¤Ë¤ª¤±¤ë¤È¤Æ¤â¹ÈÏ°Ï¤Ê¥¬¥¤¥É¤Ç¤¹¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¡¢¥»¥¥å¥ê¥Æ¥£¡¢ DNS, DHCP, Sendmail, PPP, Diald, NFS, IPSEC ¥Ù¡¼¥¹¤Î VPN, ¤Þ¤¿¥Ñ¥Õ¥©¡¼¥Þ¥ó¥¹¤Î¾Ï¤¬¾¯¡¹µó¤²¤é¤ì¤Þ¤¹¡£ 50 °Ê¾å¤Î¾Ï¤¬¤¢¤ê¤Þ¤¹¡£ <item>Linux ¥Û¥¹¥È¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø¤ÎÀÜÂ³¤Ë´Ø¤·¤Æ¤Ï¡¢°Ê²¼¤ÎÊ¸½ñ¤Ë ¤Æ°·¤ï¤ì¤Æ¤¤¤Þ¤¹: <url url="http://www.linuxdoc.org/HOWTO/ISP-Hookup-HOWTO.html" name="Linux ISP Hookup HOWTO">, <url url="http://www.linuxdoc.org/HOWTO/PPP-HOWTO.html" name="Linux PPP HOWTO">, <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS">, <url url="http://www.linuxdoc.org/HOWTO/mini/DHCP/index.html" name="Linux DHCP mini-HOWTO">, <url url="http://www.linuxdoc.org/HOWTO/Cable-Modem/index.html" name="Linux Cable Modem mini-HOWTO"> ¤½¤·¤Æ <url url="http://www.linuxdoc.org/HOWTO/mini/ADSL.html" name="Linux ADSL mini-HOWTO"> <item>Ipfwadm 2.3 °Ê¹ß¤Ï <htmlurl url="ftp://ftp.xos.nl/pub/linux/ipfwadm/ipfwadm-2.3.0.tar.gz" name="ftp://ftp.xos.nl/pub/linux/ipfwadm/ipfwadm-2.3.tar.gz"> ¤«¤éÆþ¼ê²ÄÇ½¤Ç¤¹¡£ &nl; É¬Í×¤Ê¥Ð¡¼¥¸¥ç¥ó¤Ë´Ø¤¹¤ë¤è¤ê¾ÜºÙ¤Ê¾ðÊó¤Ï <url url="http://www.xos.nl/linux/ipfwadm/" name="Linux IPFWADM page"> ¤Ë¤¢¤ê¤Þ¤¹¡£ <itemize> <item> ¤â¤· 2.0.38+ ¥«¡¼¥Í¥ë¾å¤Ç IPCHAINS ¤òÆ°ºî¤µ¤»¤ë¤³¤È¤Ë¶½Ì£¤¬¤¢¤ë¤Ê¤é¡¢ <url url="http://www-miaif.lip6.fr/willy/pub/linux-patches/" name="Willy Tarreau ¤Î 2.0.36 ÍÑ IPCHAINS ¥¤¥Í¡¼¥Ö¥é"> °¿¤Ï <htmlurl url="http://www.linuxdoc.org/HOWTO/IPCHAINS-HOWTO.html" name="Rusty ¤Î 2.0.x ¥«¡¼¥Í¥ëÍÑ IPCHAINS"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ </itemize> <item>¿·¤·¤¤¥«¡¼¥Í¥ë¤ÎÀßÄê¡¢¥³¥ó¥Ñ¥¤¥ëµÚ¤Ó¥¤¥ó¥¹¥È¡¼¥ë¤Î¥Î¥¦¥Ï¥¦¤Ï <url url="http://www.linuxdoc.org/HOWTO/Kernel-HOWTO.html" name="Linux Kernel HOWTO"> ¤Ë¾Ü¤·¤¯½ñ¤«¤ì¤Æ¤¤¤Þ¤¹¡£ <item>¤½¤ÎÂ¾½ô¡¹¤Îµ¡Ç½¤ò¼Â¸½¤¹¤ëÉÕ²ÃÅª¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥Ñ¥Ã¥Á¤Ï °Ê²¼¤è¤ê¥À¥¦¥ó¥í¡¼¥É¤·¤ÆÅ¬ÍÑ¤Ç¤¤Þ¤¹ - <itemize> <item>TCP/IP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥ÀËô¤Ï¥ê¥À¥¤¥ì¥¯¥¿ - ¤³¤ì¤é¤Î¥Ä¡¼¥ë¤Ç¡¢ Èó MASQ ¾õÂÖ¤ÇÆ°ºî¤µ¤»¤¿¤¤¥×¥í¥°¥é¥à¤ò MASQ ¥µ¡¼¥Ð¤Î¸å¤íÂ¦¤Ç²ÔÆ¯ ¤µ¤»¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ ¤³¤ì¤Ë²Ã¤¨¤Æ¡¢ MASQ ¥µ¡¼¥Ð¤ò¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥æ¡¼¥¶¡¼¤¬ÆâÉô¤Î WWW, TELNET, SMTP, FTP (¥Ñ¥Ã¥Á¤¬É¬Í×) Åù¤Î¥µ¡¼¥Ð¤ËÀÜÂ³¤Ç¤¤ë¤è¤¦¤ËÀßÄê ¤Ç¤¤Þ¤¹¡£ ¾ÜºÙ¤Ï¤³¤Î HOWTO ¤Î <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ò¤´Í÷¤¯¤À¤µ¤¤¡£ °Ê²¼¤Ï 2.0.x ¥«¡¼¥Í¥ëÍÑ IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥Ñ¥Ã¥Á¤Î°ìÍ÷¤Ç¤¹ - <itemize> <item>Steven Clarke »á¤Î <htmlurl url="http://www.ox.compsoc.org.uk/~steve/portforwarding.html" name="IP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥° (IPPORTFW)"> - <bf>¤ªÁ¦¤á</bf> <item><htmlurl url="http://ipmasq.cjb.net/ipautofw.tar.gz" name="IP ¥ª¡¼¥È¥Õ¥©¥ï¡¼¥É"> µÚ¤Ó <url url="ftp://ftp.netis.com/pub/members/rlynch/ipautofw.tar.gz" name="¥ß¥é¡¼"> (IPAUTOFW) - <htmlurl url="http://ipmasq.cjb.net/tcpdeath.html" name="¤ªÁ¦¤á¤·¤Þ¤»¤ó"> <item><url url="http://ipmasq.cjb.net/redir_0.7.orig.tar.gz" name="¥ê¥À¥¤¥ì¥¯¥¿"> TCP ÍÑ (REDIR) - ¤ªÁ¦¤á¤·¤Þ¤»¤ó <item> <htmlurl url="http://ipmasq.cjb.net/udpred.c.gz" name="UDP ¥ê¥À¥¤¥ì¥¯¥¿"> (UDPRED) - ¤ªÁ¦¤á¤·¤Þ¤»¤ó </itemize> ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥É FTP - <itemize> <item> FTP ¥È¥é¥Õ¥£¥Ã¥¯¤òÆâÉô FTP ¥µ¡¼¥Ð¤ØÅ¾Á÷¤¹¤ë¤Ä¤â¤ê¤Ê¤é¡¢<htmlurl url="http://ipmasq.cjb.net/patches/portfw-ftp-patch.tgz" name="Fred Viles »á¤Î FTP ¥µ¡¼¥Ð¥Ñ¥Ã¥Á ( HTTP ·ÐÍ³)"> Ëô¤Ï <htmlurl url="ftp://ftp.e-infomax.com/ipmasq/patches/portfw-ftp-patch.tgz" name="Fred Viles »á¤Î FTP ¥µ¡¼¥Ð¥Ñ¥Ã¥Á ( FTP ·ÐÍ³)"> ¤ò¥À¥¦¥ó¥í¡¼¥É¤¹¤ëÉ¬Í×¤¬¤¢¤ë¤Ç¤·¤ç¤¦¡£ ¡Ö¤Ç¤·¤ç¤¦¡×¤È½Ò¤Ù¤¿¤Î¤Ë¤ÏÌõ¤¬¤¢¤ê¤Þ¤·¤Æ¡¢°ìÉô¤Î¥æ¡¼¥¶¤Ï¥Ñ¥Ã¥Á¤¬Å¬ÍÑ ¤µ¤ì¤¿¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¤ò»ý¤Ã¤Æ¤¤¤ë¾ì¹ç¤¬¤¢¤ë¤«¤é¤Ç¤¹¡£ ¤³¤ÎÏÃÂê¤Ë´Ø¤¹¤ë¾ÜºÙ¤Ï¤³¤Î HOWTO ¤Î <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ò¤´Í÷¤¯¤À¤µ¤¤¡£ </itemize> X-Window ¥Ç¥£¥¹¥×¥ì¥¤¥Õ¥©¥ï¡¼¥À - <itemize> <item><url url="ftp://sunsite.unc.edu/pub/Linux/X11/compress/dxpc-3.7.0.tar.gz" name="X-windows ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥° (DXCP)"> </itemize> ICQ MASQ ¥â¥¸¥å¡¼¥ë <itemize> <item><htmlurl url="http://members.tripod.com/~djsf/masq-icq/" name="Andrew Deryabin »á¤Î ICQ MASQ ¥â¥¸¥å¡¼¥ë"> </itemize> PPTP (GRE) µÚ¤Ó SWAN (IPSEC) VPN ¥È¥ó¥Í¥ê¥ó¥°¥Õ¥©¥ï¡¼¥À - <itemize> <item><htmlurl url="ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html" name="John Hardin »á¤Î VPN ¥Þ¥¹¥«¥ì¡¼¥É¥Õ¥©¥ï¡¼¥À"> °¿¤Ï°Ê²¼¤Î¸Å¤¤¥Ñ¥Ã¥Á <url url="http://ipmasq.cjb.net/ip_masq_pptp.patch.gz" name="PPTP ¥µ¥Ý¡¼¥È"> </itemize> ¥²¡¼¥àÆÃÍ¤Î¥Ñ¥Ã¥Á: <itemize> <item>Glenn Lamb »á¤Î <url url="ftp://ftp.netcom.com/pub/mu/mumford/loose-udp-2.0.36.patch.gz" name="2.0.36+ ÍÑ LooseUDP"> ¥Ñ¥Ã¥Á¡£ °ìÉô¤Î WWW ¥Ö¥é¥¦¥¶¤Ï¤³¤Î .gz ¥Õ¥¡¥¤¥ë¤ò¼«Æ°Åª¤Ë²òÅà¤¹¤ë¤³¤È¤ËÃí °Õ¤·¤Æ¤¯¤À¤µ¤¤¡£¤³¤Î¥Õ¥¡¥¤¥ë¤ò¥À¥¦¥ó¥í¡¼¥É¤¹¤ëºÝ¤Ë¤Ï¡¢SHIFT ¥¡¼¤ò ²¡¤·¤Ê¤¬¤é¾åµ URL ¤ò¥¯¥ê¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£ ¾ÜºÙ¤Ï Dan Kegel »á¤Î <url url="http://www.alumni.caltech.edu/˜dank/peer-nat.html" name="NAT Page"> ¤âÄ´¤Ù¤Æ¤ª¤¤¤Æ¤¯¤À¤µ¤¤¡£ ¹¹¤Ê¤ë¾ðÊó¤Ï <ref id="Game-Clients" name="¥²¡¼¥à¥¯¥é¥¤¥¢¥ó¥È"> ¤Î¾Ï¤È <ref id="FAQ" name="¤è¤¯¤¢¤ë¼ÁÌä (FAQ)"> ¤Î¾Ï¤Ç¤âÆÀ¤é¤ì¤Þ¤¹¡£ </itemize> </itemize> ¾åµ¥Ñ¥Ã¥ÁµÚ¤Ó¤½¤ÎÂ¾¤Î¾ÜºÙ¤Ï <url url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤Ë¤ÆÆþ¼ê¤Ç¤¤Þ¤¹¡£ </itemize>     <sect> IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÎÀßÄê <quote>  <bf>¥×¥é¥¤¥Ù¡¼¥È¥Í¥Ã¥È¥ï¡¼¥¯¾å¤Ë½ÅÍ×¤Ê¾ðÊó¤¬¤¢¤ë¾ì¹ç¤Ë¤Ï¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò¼ÂÁõ¤¹¤ëÁ°¤Ë¡¢¥»¥¥å¥ê¥Æ¥£¤Î´ÑÅÀ¤«¤é¿µ½Å¤Ë¸¡Æ¤¤·¤Æ ¤¯¤À¤µ¤¤¡£ ¤³¤ì¤òÂÕ¤ë¤È¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¤¢¤Ê¤¿¤¬¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø½Ð¤Æ¹Ô¤¯ ¥²¡¼¥È¥¦¥§¥¤¤Ë¤Ê¤ê¤Þ¤¹¤¬¡¢¤³¤ì¤È¶¦¤Ë³°Â¦¤ÎÀ¤³¦¤Ë¤¤¤ëÃ¯¤«¤¬¤¢¤Ê¤¿¤Î ¥Í¥Ã¥È¥ï¡¼¥¯¤Ë¿¯Æþ¤¹¤ë¥²¡¼¥È¥¦¥§¥¤¤È¤â¤Ê¤Ã¤Æ¤·¤Þ¤¦¤Î¤Ç¤¹¡£</bf>  ¤Ò¤È¤¿¤Ó IP ¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤òÀßÄê¤¹¤ë¤Ê¤é¤Ð¡¢¶¯ÎÏ¤Ê IPFWADM/IPCHAINS ¤Ë¤è¤ë¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ò¼ÂÁõ¤¹¤ë¤³¤È¤ò¶¯¤¯¤ªÁ¦¤á¤·¤Þ¤¹¡£ ¾ÜºÙ¤Ï¸å½Ò¤Î <ref id="Strong-IPFWADM-Rulesets" name="¶¯¤¤ IPFWADM ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> µÚ¤Ó <ref id="Strong-IPCHAINS-Rulesets" name="¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> ¤Î¾Ï¤ò¤´Í÷¤¯¤À¤µ¤¤¡£ </quote>   <label id="Kernel-Compile"> <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÁÈ¤ß¹þ¤ó¤À¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë  <quote>  <bf> ¤ª»È¤¤¤Î Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤¬¡¢´û¤Ë²¼µ¤ÎÉ¬Í×¤Êµ¡Ç½¤ÎÁ´¤Æ ¤ò¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤Æ¡Ä - </bf>  <itemize> <item>IPFWADM/IPCHAINS <item>IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥° <item>IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥° <item>IP ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ê¥ó¥° <item>¤½¤ÎÂ¾ </itemize>  ¤½¤·¤ÆÁ´¤Æ¤Î MASQ ¤Ë´Ø·¸¤¹¤ë¥â¥¸¥å¡¼¥ë¤¬¥³¥ó¥Ñ¥¤¥ë¤µ¤ì¤Æ¤¤¤ë (Â¿¤¯¤Î ¥â¥¸¥å¥é¡¼¥«¡¼¥Í¥ë¤ÏÉ¬Í×¤È¤µ¤ì¤ëÁ´¤Æ¤¬´Þ¤Þ¤ì¤Æ¤¤¤ë¤³¤È¤Ç¤·¤ç¤¦) ¤Ê¤é¡¢ ¥«¡¼¥Í¥ë¤òºÆ¥³¥ó¥Ñ¥¤¥ë¤¹¤ëÉ¬Í×¤Ï¤¢¤ê¤Þ¤»¤ó¡£ ¤¢¤Ê¤¿¤Î»ÈÍÑ¤¹¤ë Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤¬ MASQ µ¡Ç½¤òÁõÈ÷¤·¤Æ ¤¤¤ë¤È¼«¿®¤¬»ý¤Æ¤Ê¤¤¤Ê¤é¡¢ <ref id="MASQ-supported-Distributions" name="¥Þ¥¹¥«¥ì¡¼¥É¥µ¥Ý¡¼¥ÈºÑ¤ß¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤Î¥ê¥¹¥È¤¬¿®ÍÑ¤Ç¤¤Ê¤¤¤«¡¢¤¢¤Ê¤¿¤Î»ÈÍÑ¤¹¤ë¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤¬ ¥ê¥¹¥È¤Ë¤Ê¤¤¤Ê¤é¡¢°Ê²¼¤Î¥Æ¥¹¥È¤ò»î¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤ -  <itemize> <item>Linux box ¤Ë¥í¥°¥¤¥ó¤·¤Æ¡¢¥³¥Þ¥ó¥É "ls /proc/sys/net/ipv4" ¤ò ¼Â¹Ô¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ <item>¥³¥Þ¥ó¥É¤ÎÉ½¼¨·ë²Ì¤ÎÃæ¤Ë "ip_forward", "ip_masq_debug", "ip_masq_udp_dloose"(Ç¤°Õ), µÚ¤Ó "ip_always_defrag"(Ç¤°Õ) Åù¤¬¤¢¤ë¤«³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ </itemize>  ¤³¤ì¤é¤¬¤¢¤ì¤Ð¡¢¤¢¤Ê¤¿¤Î¥«¡¼¥Í¥ë¤Ë¤Ï¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤¬¼ÂÁõ¤µ¤ì¤Æ¤¤¤Þ¤¹¡£  ¤¢¤Ê¤¿¤Î»ÈÍÑ¤¹¤ë¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤¬É¸½à¤Ç IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥° ¤ò¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤ë¤Ë¤â¤«¤«¤ï¤é¤º¾åµ¥Õ¥¡¥¤¥ë¤¬¸«¤Ä¤«¤é¤Ê¤¤¾ì¹ç¡¢ ¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤Ï¥µ¥Ý¡¼¥È¤µ¤ì¤Æ¤¤¤Ê¤¤¤È¿äÂ¬¤»¤¶¤ë¤òÆÀ¤Þ¤»¤ó¡£ ¤½¤Î¾ì¹ç¡Ä¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ ¤Ç¤â¡¢¤´¿´ÇÛÌµ¤¯¡£Æñ¤·¤¯¤Ê¤¤¤Ç¤¹¤«¤é¡£  É¸½à¤Ç¥µ¥Ý¡¼¥È¤µ¤ì¤Æ¤¤¤ë¤«ÈÝ¤«¤Ë¤«¤«¤ï¤é¤º¡¢¤³¤Î¾Ï¤ÏÂ¾¤ÎÍÍÑ¤Ê¾ðÊó¤ò ´Þ¤ó¤Ç¤¤¤Þ¤¹¤Î¤Ç¡¢ÆÉ¤à¤³¤È¤ò¶¯¤¯¤ªÁ¦¤á¤·¤Þ¤¹¡£ </quote>   <sect2> Linux 2.2.x ¥«¡¼¥Í¥ë  <bf>É¬Í×¤È¤µ¤ì¤ë¥½¥Õ¥È¥¦¥§¥¢¤ä¥Ñ¥Ã¥ÁÅù¤Ï <ref id="2.2.x-Requirements" name="2.2.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤ò¤´Í÷¤¯¤À¤µ¤¤¡£</bf>  <itemize> <item>¤Þ¤ºÂè°ì¤Ë¡¢ 2.2.x ¤Î¥«¡¼¥Í¥ë¥½¡¼¥¹¤¬É¬Í×¤Ç¤¹¡£ (Ë¾¤Þ¤·¤¯¤Ï 2.2.16 °Ê¹ß¤ÎºÇ¿·¤Î¥«¡¼¥Í¥ë¤¬ÎÉ¤¤¤Ç¤¹¡£) Ãí°Õ #1 - 2.2.16 ¤è¤ê°ÊÁ°¤Î Linux 2.2.x ¥«¡¼¥Í¥ë¤Ë¤Ï¡¢ TCP ÀÜÂ³¤Ë¤ª¤¤¤Æ ¥ë¡¼¥È¸¢¸Â¤¬ºñ¼è¤µ¤ì¤ë¼åÅÀ¤¬¤¢¤ê¡¢ 2.2.11 °ÊÁ°¤Î¥Ð¡¼¥¸¥ç¥ó¤Ë¤Ï IPCHAINS ¤Î¥Õ¥é¥°¥á¥ó¥Æ¡¼¥·¥ç¥ó¤Ë¥Ð¥°¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤Î¤¿¤á¡¢¶¯ÎÏ¤Ê IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÆ°ºî¤µ¤»¤è¤¦¤È¤¹¤ë¿Í¤Ï¡¢ ¤³¤ì¤é¹¶·â¤ËÂÐ¤·¤ÆÌµËÉÈ÷¤Ç¤¹¡£ ¤¢¤Ê¤¿¤Î¥«¡¼¥Í¥ë¤ò½¤ÀµºÑ¤ß¥Ð¡¼¥¸¥ç¥ó¤Ø¥¢¥Ã¥×¥°¥ì¡¼¥É¤·¤Æ¤¯¤À¤µ¤¤¡£ Ãí°Õ #2 - 2.2.x ¥«¡¼¥Í¥ë¤¬À°È÷¤µ¤ìÂ³¤±¤é¤ì¤¿·ë²Ì¡¢¥³¥ó¥Ñ¥¤¥ë»þ¤Î ¥ª¥×¥·¥ç¥ó¤¬ÊÑËÆ¤·Â³¤±¤Æ¤¤¤Þ¤¹¡£ º£²ó¤Î¥Ð¡¼¥¸¥ç¥ó¤ÎÊ¸½ñ¤Ë¤ª¤¤¤Æ¡¢¤³¤Î¾Ï¤Ï¥«¡¼¥Í¥ë 2.2.15 ¤ÎÀßÄêÆâÍÆ ¤òÈ¿±Ç¤·¤Æ¤¤¤Þ¤¹¡£ ¤â¤·¤â¤ª»È¤¤¤Î¥«¡¼¥Í¥ë¤¬¤â¤Ã¤È¸Å¤¤¥Ð¡¼¥¸¥ç¥ó¤Î¾ì¹ç¤Ç¤¹¤È¡¢¥À¥¤¥¢¥í¥° ¤ÎÉ½¼¨¤Ï°ã¤Ã¤Æ¸«¤¨¤ë¤Ç¤·¤ç¤¦¡£ ¿·µ¡Ç½¤ä°ÂÄêÀ¤ò¤â¤¿¤é¤¹ºÇ¿·¥Ð¡¼¥¸¥ç¥ó¤Î¥«¡¼¥Í¥ë¤Ø¤Î¥¢¥Ã¥×¥°¥ì¡¼¥É ¤ò¤ªÁ¦¤á¤·¤Þ¤¹¡£ <item>¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë¤¬½é¤á¤Æ¤Ç¤â¡¢¶²¤¬¤ë¤³¤È¤Ï¤¢¤ê¤Þ¤»¤ó¡£ ¼Â¤Î½ê¤«¤Ê¤ê´ÊÃ±¤Ç¤¹¤·¡¢ <ref id="2.2.x-Requirements" name="2.2.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤Ç¼¨¤¹´ö¤Ä¤«¤Î URL ¤Ç¤â°·¤ï¤ì¤Æ¤¤¤Þ¤¹¡£ <item>¼¡¤Î¥³¥Þ¥ó¥É¤Ë¤Æ¥«¡¼¥Í¥ë¥½¡¼¥¹¤ò <tt>/usr/src/</tt> ¥Ç¥£¥ì¥¯¥È¥ê ¤ØÅ¸³«¤·¤Æ¤¯¤À¤µ¤¤ - <tt>tar xvzf linux-2.2.x.tar.gz -C /usr/src</tt> ¤³¤³¤Ç¡¢2.2.x ¤Î "x" ¤Ï Linux 2.2 ¥«¡¼¥Í¥ë¤Î¸½ºß¤Î¥Ð¡¼¥¸¥ç¥ó¥Ê¥ó¥Ð¡¼ ¤Ç¤¹¡£ ´°Î»¤·¤Þ¤·¤¿¤é¡¢ <tt>/usr/src/linux/</tt> ¤È¤¤¤¦¥Ç¥£¥ì¥¯¥È¥ê¤¬¤¢¤ë¤«¡¢ ¤Þ¤¿¤Ï¥·¥ó¥Ü¥ê¥Ã¥¯¥ê¥ó¥¯¤¬Ä¥¤é¤ì¤Æ¤¤¤ë¤³¤È¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ <item>Å¬Åö¤Ê¡¢°¿¤ÏÇ¤°Õ¤Î¥Ñ¥Ã¥Á¤ò¥«¡¼¥Í¥ë¥½¡¼¥¹¥³¡¼¥É¤ËÅö¤Æ¤Æ¤¯¤À¤µ¤¤¡£ ¥«¡¼¥Í¥ë 2.2.1 ¤Î»þÅÀ¤Ç¤Ï¡¢ IP Masq ¤ò²ÔÆ¯¤µ¤»¤ë°Ù¤ÎÆÃ¼ì¤Ê¥Ñ¥Ã¥ÁÅù ¤ÏÉÔÍ×¤Ç¤¹¡£ PPTP µÚ¤Ó Xwindow ¤Î¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Îµ¡Ç½¤Ï¥ª¥×¥·¥ç¥ó¤Ç¤¹¡£ <ref id="2.2.x-Requirements" name="2.2.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤Ë¤¢¤ë URL¤È <htmlurl url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤Ë¤¢¤ëºÇ¿·¾ðÊó¤È¥Ñ¥Ã¥Á¤Î URL ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ <item>°Ê²¼¤Ë¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤¹¤ëºÝ¤ËºÇÄã¸ÂÉ¬Í×¤Ê¥ª¥×¥·¥ç¥ó¤ò µ¤·¤Þ¤¹¡£ ¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤¿¥Í¥Ã¥È¥ï¡¼¥¯¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤âÆ±ÍÍ¤ËÀßÄê¤¹¤ëÉ¬Í×¤¬ ¤¢¤ê¤Þ¤¹¡£ ¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤¹¤ëÊýË¡¤Î¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï¡¢ <url url="http://www.linuxdoc.org/HOWTO/Kernel-HOWTO.html" name="Linux Kernel HOWTO"> ¤È¡¢¥«¡¼¥Í¥ë¥½¡¼¥¹¥Ç¥£¥ì¥¯¥È¥ê¤Î README ¥Õ¥¡¥¤¥ë¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ¡ÚÌõÃí: <url url="http://www.linux.or.jp/JF/JFdocs/Kernel-HOWTO.html" name="JF¤Ë¤è¤ë Kernel-HOWTO ¤ÎÆüËÜ¸ìÌõ¤â¤¢¤ê¤Þ¤¹¡£"> ¤Þ¤¿¡¢ Debian GNU/Linux ¤Ç¤Ï¡¢ fakeroot ¤È kernel-package ¤È¤¤¤¦¥Ñ¥Ã¥±¡¼¥¸ ¤òÆ³Æþ¤¹¤ë¤³¤È¤Ç¡¢¥«¥¹¥¿¥à¥«¡¼¥Í¥ë¤ÎºîÀ®¤¬°ìÈÌ¥æ¡¼¥¶¤Î¥Û¡¼¥à¥Ç¥£¥ì¥¯¥È¥ê ÇÛ²¼¤Ç¡¢´ÊÃ±¤Ë¤Ç¤¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£ Ã¢¤·¡¢¤³¤ÎÊ¸½ñÃæ¤Ç¼¨¤µ¤ì¤ë make menuconfig °¿¤Ï make xconfig ¤ÎÆâÍÆ¤Ï ¶¦ÄÌ¤Ç¤¹¡£¡Û  °Ê²¼¤Î <bf>YES or NO ¤ÎÁªÂò</bf> ¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ Á´¤Æ¤Î¥ª¥×¥·¥ç¥ó¤Ï¤³¤Î HOWTO ¤Ë¤Æ¸å½Ò¤¹¤ëÀµ¤·¤¤¥«¡¼¥Í¥ë¥Ñ¥Ã¥Á¤Ê¤¯¤·¤Æ¡¢ Í¸ú¤È¤Ï¸Â¤ê¤Þ¤»¤ó¡£ </itemize>  <tscreen> <verb> * ³«È¯Ãæ¤äÉÔ´°Á´¤Ê¥³¡¼¥É/¥É¥é¥¤¥Ð¤âÉ½¼¨ (CONFIG_EXPERIMENTAL) [Y/n/?] - YES: IP MASQ ¼«ÂÎ¤Ç¤ÏÉ¬Í×¤Ê¤¤¤±¤ì¤É¤â¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤Ç MASQ ¥â¥¸¥å¡¼¥ë¤ÎºîÀ®¤È¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤¬¼Â¸½¤µ¤ì¤Þ¤¹¡£ -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- * ¥í¡¼¥À¥Ö¥ë¡¦¥â¥¸¥å¡¼¥ë¤ò»ÈÍÑ²ÄÇ½¤Ë¤·¤Þ¤¹ (CONFIG_MODULES) [Y/n/?] - YES: ¤³¤ì¤Ç¥«¡¼¥Í¥ë¤Î IP MASQ ¤Î¥â¥¸¥å¡¼¥ë¤¬»È¤¨¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£ -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- * ¥Í¥Ã¥È¥ï¡¼¥¯¤Î¥µ¥Ý¡¼¥È (CONFIG_NET) [Y/n/?] - YES: ¥Í¥Ã¥È¥ï¡¼¥¯¥µ¥Ö¥·¥¹¥Æ¥à¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- * Sysctl ¥µ¥Ý¡¼¥È (CONFIG_SYSCTL) [Y/n/?] - YES: ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¡¢¥À¥¤¥Ê¥ß¥Ã¥¯ IP ¡¢¥ë¡¼¥º UDP Åù¤Î¥ª¥×¥·¥ç¥ó ¤òÍ¸ú/Ìµ¸ú¤Ë¤·¤Þ¤¹¡£ -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- * ¥Ñ¥±¥Ã¥È¡¦¥½¥±¥Ã¥È (CONFIG_PACKET) [Y/m/n/?] - YES: ¤³¤ì¤ÏÇ¤°Õ¤Ç¤¹¤¬¡¢IP MASQ ¤ËÅ»¤ï¤ë¤¢¤é¤æ¤ëÌäÂê¤ò¥Ç¥Ð¥Ã¥° ¤¹¤ë¤¿¤á¤Ë TCP DUMP ¤ò»È¤¨¤ë¤è¤¦¤Ë¤¹¤ëºÝ¤ËÉ¬Í×¤Êµ¡Ç½¤Ç¤¹¡£ * ¥«¡¼¥Í¥ë¡¿¥æ¡¼¥¶ ¥Í¥Ã¥È¥ï¡¼¥¯¡¦¥ê¥ó¥¯¡¦¥½¥±¥Ã¥È (CONFIG_NETLINK) [Y/n/?] - YES: ¤³¤ì¤ÏÇ¤°Õ¤Ç¤¹¤¬¡¢·ÐÏ©¾ðÊóÅù¤Î¹âÅÙ¤Ê¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î ÌäÂêÅÀ¤ÎµÏ¿¤ò¼è¤ë¤Î¤ËÌòÎ©¤Á¤Þ¤¹¡£ ¡ÚÌõÃí: ¤³¤ÎÉôÊ¬¤Ï¡¢¼ÂºÝ¤Ï¡Ö¥«¡¼¥Í¥ë¡¿¥æ¡¼¥¶ ¥Í¥Ã¥È¥ï¡¼¥¯¡¦¥ê¥ó¥¯¡¦¥É¥é¥¤¥Ð (Kernel/User network link driver) ¡×¤È¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£¡Û * ¥ë¡¼¥Æ¥£¥ó¥°¡¦¥á¥Ã¥»¡¼¥¸ (CONFIG_RTNETLINK) [Y/n/?] - NO: ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¥Ñ¥±¥Ã¥È¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤ÎµÏ¿¤ò¼è¤ë¤³¤È¤È¤Ï Ìµ´Ø·¸¤Ç¤¹¡£ -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- * ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ëµ¡Ç½ (CONFIG_FIREWALL) [Y/n/?] - YES: ¥«¡¼¥Í¥ë¤Ë IPCHAINS ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥Ä¡¼¥ë¤Ë¤è¤ëÀßÄê¤¬¤Ç¤¤ë ¤è¤¦¤Ë¤·¤Þ¤¹¡£ * ¥½¥±¥Ã¥È¤Ç¤ÎÊ¬ÊÌ (CONFIG_FILTER) [Y/n/?] - Ç¤°Õ: ¤³¤ì¤Ï IPMASQ ¤ÈÌµ´Ø·¸¤Ç¤¹¤¬¡¢ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Ë DHCP ¥µ¡¼¥Ð ¤ò¼ÂÁõ¤¹¤ë¤Ê¤é¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤¬É¬Í×¤Ë¤Ê¤ê¤Þ¤¹¡£ * Unix ¥É¥á¥¤¥ó¡¦¥½¥±¥Ã¥È (CONFIG_UNIX) [Y/m/n/?] - YES: ¤³¤ì¤Ç UNIX TCP/IP ¥½¥±¥Ã¥Èµ¡¹½¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ * TCP/IP ¥Í¥Ã¥È¥ï¡¼¥¥ó¥° (CONFIG_INET) [Y/n/?] - YES: TCP/IP ¥×¥í¥È¥³¥ë¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- * IP: ¹âµ¡Ç½¥ë¡¼¥¿ (CONFIG_IP_ADVANCED_ROUTER) [Y/n/?] - YES: ¤³¤ì°Ê¹ß¤Î¹âµ¡Ç½ MASQ ¥ª¥×¥·¥ç¥ó¤ÎÀßÄê¤¬Í¸ú¤Ë¤Ê¤ê¤Þ¤¹¡£ * IP: ¥Ý¥ê¥·¡¼¥ë¡¼¥Æ¥£¥ó¥° (CONFIG_IP_MULTIPLE_TABLES) [N/y/?] - NO: MASQ ¤Ç¤ÏÉÔÍ×¤Ç¤¹¤¬¡¢ TCP/IP È¯¿®¸µ¥¢¥É¥ì¥¹¤òÍÑ¤¤¤ë¤«¡¢ °¿¤Ï TOS (Type-Of-Service) ÃÍ¤òÍÑ¤¤¤ë¥ë¡¼¥Æ¥£¥ó¥°Åù¤Î¹âµ¡Ç½ ¤òÉ¬Í×¤È¤¹¤ë¿Í¤Ï¤³¤Î¥ª¥×¥·¥ç¥ó¤¬É¬Í×¤Ç¤¹¡£ * IP: Åù²Á¥³¥¹¥ÈÂ¿½Å¥Ñ¥¹ (CONFIG_IP_ROUTE_MULTIPATH) [N/y/?] - NO: ÄÌ¾ï¤Î MASQ µ¡Ç½¤Ë¤ÏÉÔÍ×¤Ç¤¹¡£ * IP: ·ÐÏ©·èÄê´ð½à¤È¤·¤Æ TOS ÃÍ¤ò»ÈÍÑ¤¹¤ë (CONFIG_IP_ROUTE_TOS) [N/y/?] - NO: ÄÌ¾ï¤Î MASQ µ¡Ç½¤Ë¤ÏÉÔÍ×¤Ç¤¹¡£ * IP: ¾éÄ¹¤Ê·ÐÏ©´Æ»ë (CONFIG_IP_ROUTE_VERBOSE) [Y/n/?] - YES: IP ¥¢¥É¥ì¥¹¤òº¾¾Î¤·¤¿¥Ñ¥±¥Ã¥È¤òÇË´þ¤·¡¢¥í¥°µÏ¿¤¹¤ë¥ë¡¼¥Æ¥£¥ó¥° ¥³¡¼¥É¤ò»È¤¦ºÝ¤Ë¤ÏÊØÍø¤Ç¤¹ (¶¯¤¯¤ªÁ¦¤á¤·¤Þ¤¹) ¡£ * IP: Âç¤¤Ê¥ë¡¼¥Æ¥£¥ó¥°¥Æ¡¼¥Ö¥ë (CONFIG_IP_ROUTE_LARGE_TABLES) [N/y/?] - NO: ÄÌ¾ï¤Î MASQ µ¡Ç½¤Ë¤ÏÉÔÍ×¤Ç¤¹¡£ * IP: ¥«¡¼¥Í¥ë¥ì¥Ù¥ë¤Î¼«Æ°¹½À® (CONFIG_IP_PNP) [N/y/?] ? - NO: ÄÌ¾ï¤Î MASQ µ¡Ç½¤Ë¤ÏÉÔÍ×¤Ç¤¹¡£ * IP: ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë (CONFIG_IP_FIREWALL) [Y/n/?] - YES: ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ëµ¡Ç½¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ * IP: ¥Õ¥¡¥¤¥¢¡¼¥¦¥©¡¼¥ë¤Î¥Ñ¥±¥Ã¥È¡¦¥Í¥Ã¥È¥ê¥ó¥¯¡¦¥Ç¥Ð¥¤¥¹ (CONFIG_IP_FIREWALL_NETLINK) [Y/n/?] - Ç¤°Õ: Ç¤°Õ¤Ç¤¹¤¬¡¢¤³¤Îµ¡Ç½¤Ï IPCHAINS ¤«¤é¥³¥Ô¡¼¤·¤¿¥Ñ¥±¥Ã¥È ¤ò¥æ¡¼¥¶¶õ´Ö¤Î¥×¥í¥°¥é¥à¤ËÅÏ¤·¤Æ¥Á¥§¥Ã¥¯¤¹¤ë¤³¤È¤ò¼Â¸½¤·¤Þ¤¹¡£ * IP: Æ©²á¥×¥í¥¥·¤Î¥µ¥Ý¡¼¥È (CONFIG_IP_TRANSPARENT_PROXY) [N/y/?] - NO: ÄÌ¾ï¤Î MASQ µ¡Ç½¤Ë¤ÏÉÔÍ×¤Ç¤¹¡£ ¡ÚÌõÃí: ¤³¤ÎÉôÊ¬¤Ï¡¢¼ÂºÝ¤Ï¡ÖÅù²Á¥×¥í¥¥· (IP: transparent proxying)¡× ¤È¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£¡Û * IP: ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥° (CONFIG_IP_MASQUERADE) [Y/n/?] - YES: ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Î TCP/IP ¥Ñ¥±¥Ã¥È¤ò³°Éô¥Í¥Ã¥È¥ï¡¼¥¯¤Î ¤â¤Î¤Ë½ñ¤´¹¤¨¤ë¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ * IP: ICMP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥° (CONFIG_IP_MASQUERADE_ICMP) [Y/n/?] - YES: ICMP ping ¥Ñ¥±¥Ã¥È¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¼Â¸½¤·¤Þ¤¹ (ICMP ¤Î¥¨¥é¡¼¥³¡¼¥É¤Ï¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤ÎÀßÄê¤Ë´Ø·¸¤Ê¤¯¥Þ¥¹¥«¥ì¡¼¥É ¤µ¤ì¤Þ¤¹)¡£ ÀÜÂ³¤Î¥È¥é¥Ö¥ë¥·¥å¡¼¥Æ¥£¥ó¥°¤ËÉ¬¿Ü¤Îµ¡Ç½¤Ç¤¹¡£ * IP: ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°ÍÑÆÃ¼ì¥â¥¸¥å¡¼¥ë¤Î¥µ¥Ý¡¼¥È (CONFIG_IP_MASQUERADE_MOD) [Y/n/?] - YES: ¤Ç¤âÇ¤°Õ¤Ç¤¹¡£ ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¡¢¤³¤ì°Ê¹ß¤Î¥ª¥×¥·¥ç¥ó¤Ç³°Â¦¤Î¥Í¥Ã¥È¥ï¡¼¥¯¾å¤Î ¥³¥ó¥Ô¥å¡¼¥¿¤È MASQ ¤µ¤ì¤¿ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¾å¤Î¥Þ¥·¥óÆ±»Î¤òÄ¾ÀÜÅª ¤ËÀÜÂ³¤¹¤ë TCP/IP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤òÍ¸ú¤Ë¤¹¤ë¤â¤Î¤Ç¤¹¡£ * IP: ipautofw ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥µ¥Ý¡¼¥È(EXPERIMENTAL) (CONFIG_IP_MASQUERADE_IPAUTOFW) [N/y/m/?] - NO: IPautofw ¤Ï ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Î¸Å¤¤ÊýË¡¤Ç¤¹¡£ ËØ¤É¤¬¸Å¤¤¥³¡¼¥É¤ÇÀê¤á¤é¤ì¡¢´ö¤Ä¤«¤ÎÌäÂêÅÀ¤â¸«¤Ä¤«¤Ã¤Æ¤ª¤ê¤Þ¤¹¡£ ¤ªÁ¦¤á*¤·¤Þ¤»¤ó*¡£ ¡ÚÌõÃí: ¸¶Ê¸¤Ï ipautofw masq support ¤È¤Ê¤Ã¤Æ¤¤¤Þ¤¹¤¬¡¢¼ÂºÝ¤Ï ipautofw masquerade support ¤È¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£¡Û * IP: ipportfw ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¥Ý¡¼¥È (EXPERIMENTAL) (CONFIG_IP_MASQUERADE_IPPORTFW) [Y/m/n/?] - YES: ³°Â¦¤Î¥Í¥Ã¥È¥ï¡¼¥¯¾å¤Î¥³¥ó¥Ô¥å¡¼¥¿¤È MASQ ¤µ¤ì¤¿ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯ ¾å¤Î¥Þ¥·¥óÆ±»Î¤òÄ¾ÀÜÅª¤ËÀÜÂ³¤¹¤ë IPPORTFW ¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ Âç³µ¡¢¤³¤Îµ¡Ç½¤ÏÆâÉô¤Î SMTP, TELNET, µÚ¤Ó WWW ¥µ¡¼¥Ð¤Ø¤Î¥¢¥¯¥»¥¹ ¤ËÍÑ¤¤¤é¤ì¤Þ¤¹¡£ FTP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Ï¤³¤Î MASQ HOWTO ¤Î FAQ ¤Î¾Ï¤Ë¾Ü½Ò ¤µ¤ì¤Æ¤¤¤ëÄÉ²Ã¤Î¥Ñ¥Ã¥Á¤¬É¬Í×¤Ç¤¹¡£ ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Ë´Ø¤¹¤ë¤è¤ê¾ÜºÙ¤Ê¾ðÊó¤Ï¡¢¤³¤Î HOWTO ¤Î ¥Õ¥©¥ï¡¼¥É¤Î¾Ï¤Ë¤¢¤ê¤Þ¤¹¡£ ¡ÚÌõÃí: ¸¶Ê¸¤Ç¤Ï EXPERIMENTAL ¤Ç¤¹¤¬¡¢¼ÂºÝ¤Ï¥«¡¼¥Í¥ë 2.2.0 °Ê¹ß¡¢ EXPERIMENTAL ¤¬¼è¤ì¤Æ¤¤¤Þ¤¹¡£¡Û * IP: ip fwmark ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¡¦¥µ¥Ý¡¼¥È (EXPERIMENTAL) (CONFIG_IP_MASQUERADE_MFW) [Y/m/n/?] - Ç¤°Õ: ¤³¤ì¤Ï PORTFW ¤Î¿·¤·¤¤ÊýË¡¤Ç¤¹¡£ ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ë¤è¤Ã¤Æ¡¢ IPCHAINS ¤Ï¹¹¤Ê¤ëÆ¯¤¤¬Í¸ú¤Ë¤Ê¤ê¡¢ ¥Ñ¥±¥Ã¥È¤Ë°õ¤òÉÕ¤±¤é¤ì¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£ IPMASQADM ¤ä IPPORFW Åù¤Î¥æ¡¼¥¶¶õ´Ö¥Ä¡¼¥ë¤òÍÑ¤¤¤Æ¡¢IPCHAINS ¤Ï¼«Æ°Åª¤Ë¥Ñ¥±¥Ã¥È¤Î¥¢¥É¥ì¥¹¤ò½ñ¤´¹¤¨¤Þ¤¹¡£ ¸½¾õ¤Ç¤Ï¡¢ PORTFW ¤è¤ê¤Ï¥Æ¥¹¥È¤µ¤ì¤Æ¤¤¤Þ¤»¤ó¤¬¡¢¿®Íê¤Ç¤¤ë¤Ç¤·¤ç¤¦¡£ ¸½ºß¡¢ IPMASQADM µÚ¤Ó IPPORTFW ¤Î»ÈÍÑ¤¬¿ä¾©¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ ¤³¤Î MFW ¤Ë¹Í¤¨¤¬¤ª¤¢¤ê¤Ç¤·¤¿¤é¡¢¥á¡¼¥ë¤ò¤ª´ê¤¤¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¼ÂºÝ¤Ï IP: ipmarkfw masquerade support ¤È¡¢ forwarding ¤¬ ¼è¤ì¤Æ¤¤¤Þ¤¹¡£¡Û * IP: ¥Û¥¹¥È¤Ç¤Ï¤Ê¤¯¥ë¡¼¥¿¤È¤·¤ÆºÇÅ¬²½¤¹¤ë (CONFIG_IP_ROUTER) [Y/n/?] - YES: ¤³¤ì¤Ï¥«¡¼¥Í¥ë¤ò¥Í¥Ã¥È¥ï¡¼¥¯¥µ¥Ö¥·¥¹¥Æ¥à¤Î°Ù¤ËºÇÅ¬²½ ¤·¤Þ¤¹¤¬¡¢¤³¤ì¤Ë¤è¤Ã¤Æ¥Ñ¥Õ¥©¡¼¥Þ¥ó¥¹¤Ë½ÅÂç¤Ê±Æ¶Á¤òµÚ¤Ü¤¹¤È¤Ï Ç§¤á¤é¤ì¤Þ¤»¤ó¡£ * IP: ¥È¥ó¥Í¥ê¥ó¥° (CONFIG_NET_IPIP) [N/y/m/?] - NO: ¤³¤ÎÇ¤°Õ¤ÎÁªÂò¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÄÌ¤¸¤ë IPIP ¥È¥ó¥Í¥ë ¤Î°Ù¤Ë¤¢¤ê¤Þ¤¹¡£ ¥È¥ó¥Í¥ê¥ó¥°/VPN µ¡Ç½¤ò¤ªË¾¤ß¤Ê¤é¡¢ GRE °¿¤Ï IPSEC ¥È¥ó¥Í¥ë¤Î »ÈÍÑ¤ò¤ªÁ¦¤á¤·¤Þ¤¹¡£ * IP: IP ±Û¤·¤Î GRE ¥È¥ó¥Í¥ë (CONFIG_NET_IPGRE) [N/y/m/?] - NO: ¤³¤ÎÇ¤°Õ¤ÎÁªÂò¤Ï¡¢ IP MASQ ¥Ü¥Ã¥¯¥¹¤òÄÌ¤¸¤ë PPTP¤È GRE ¥È¥ó¥Í¥ë¤ò¼Â¸½¤µ¤»¤ë°Ù¤Ë¤¢¤ê¤Þ¤¹¡£ -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- * IP: TCP syn ¥¯¥Ã¥¡¼¤Î¥µ¥Ý¡¼¥È (¥Ç¥Õ¥©¥ë¥È¤Ç¤ÏÌµ¸ú) (CONFIG_SYN_COOKIES) [Y/n/?] - YES: ´ðËÜÅª¤Ê TCP/IP ¥Í¥Ã¥È¥ï¡¼¥¯¥»¥¥å¥ê¥Æ¥£¤Î°Ù¤Ë¶¯¤¯¤ªÁ¦¤á¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¼ÂºÝ¤Ï SYN flood protection (SYN ¹¶·â¤«¤é¤ÎËÉ¸æ) ¤È¤¤¤¦Ì¾¾Î¤Ë¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£¡Û -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- * IP: ¥¦¥£¥ó¥É¥¦¤òÂç¤¤¯¤·¤Þ¤¹ (¥á¥â¥ê¤¬ 16 MB Ì¤Ëþ¤Î¾ì¹ç¤Ï´«¤á¤Þ¤»¤ó) (CONFIG_SKB_LARGE) [Y/n/?] - YES: Linux ¤Î TCP ¥¦¥£¥ó¥É¥¦¤òºÇÅ¬²½¤¹¤ë°Ù¤Ë¤ªÁ¦¤á¤·¤Þ¤¹¡£ -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- * ¥Í¥Ã¥È¥ï¡¼¥¯¥Ç¥Ð¥¤¥¹¤Î¥µ¥Ý¡¼¥È (CONFIG_NETDEVICES) [Y/n/?] - YES: Linux ¥Í¥Ã¥È¥ï¡¼¥¯¥Ç¥Ð¥¤¥¹ÁØ¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- * ¥Í¥Ã¥È¥ï¡¼¥¯ÍÑ¥À¥ß¡¼¥É¥é¥¤¥Ð¤Î¥µ¥Ý¡¼¥È (CONFIG_DUMMY) [M/n/y/?] - YES: Ç¤°Õ¤Ç¤¹¤¬¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤ÏÌäÂê¤Î¥Ç¥Ð¥Ã¥°¤ò½õ¤±¤Þ¤¹¡£ == ¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤Î¥µ¥Ý¡¼¥È¤ò¥³¥ó¥Ñ¥¤¥ë¤·Ëº¤ì¤Ê¤¤¤Ç¤¯¤À¤µ¤¤!! == -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- == ¥â¥Ç¥à°¿¤Ï PPPoE DSL ¥â¥Ç¥à¤ò¤ª»ý¤Á¤ÎÊý¤Ï PPP/SLIP ¤Î¥µ¥Ý¡¼¥È¤ò ¥³¥ó¥Ñ¥¤¥ë¤·Ëº¤ì¤Ê¤¤¤Ç¤¯¤À¤µ¤¤¡£ == -- ¥Þ¥¹¥«¥ì¡¼¥É¤ËÌµ´Ø·¸¤Î¥ª¥×¥·¥ç¥ó¤òÈô¤Ð¤·¤Þ¤¹ -- * /proc ¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤Î¥µ¥Ý¡¼¥È (CONFIG_PROC_FS) [Y/n/?] - YES: Linux ¥Í¥Ã¥È¥ï¡¼¥¯¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤òÍ¸ú¤Ë¤¹¤ë°Ù¤ËÉ¬Í×¤Ç¤¹¡£ </verb> </tscreen>   Ãí°Õ - ¤³¤ì¤é¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î°Ù¤À¤±¤ËÉ¬Í×¤ÊÍ×ÁÇ¤Ç¤¹¡£ ¤¢¤Ê¤¿¤Î¥·¥¹¥Æ¥à¤ËÆÃÍ¤Ê¡¢Â¾¤ÎÀßÄê¹àÌÜ¤âÁªÂò¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£   <itemize> <item>¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤·¤¿¸å¡¢°Ê²¼¤Î¤è¤¦¤Ë IP MASQ ¥â¥¸¥å¡¼¥ë¤ò ¥³¥ó¥Ñ¥¤¥ë¤·¤Æ¡¢¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤¯¤À¤µ¤¤ - <tscreen> <verb> make modules; make modules_install </verb> </tscreen> <item>¼¡¤Ë¡¢¥ê¥Ö¡¼¥È¸å IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤òÆÉ¤ß¹þ¤Þ¤»¡¢ IP MASQ ¤ò¼«Æ°Åª¤ËÍ¸ú¤Ë¤¹¤ë°Ù¤Ë¡¢ <tt>/etc/rc.d/rc.local</tt> ¤Ë ²¿¹Ô¤«ÄÉ²Ã¤·¤Þ¤¹ - <tscreen> <verb> . . . #rc.firewall script - Start IPMASQ and the firewall /etc/rc.d/rc.firewall . . . </verb> </tscreen> </itemize>   <sect2> Linux 2.0.x ¥«¡¼¥Í¥ë  <bf>É¬Í×¤È¤µ¤ì¤ë¥½¥Õ¥È¥¦¥§¥¢¤ä¥Ñ¥Ã¥ÁÅù¤Ï <ref id="2.0.x-Requirements" name="2.0.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤ò¤´Í÷¤¯¤À¤µ¤¤¡£</bf>  <itemize> <item>¤Þ¤ºÂè°ì¤Ë¡¢¥«¡¼¥Í¥ë¥½¡¼¥¹¤¬É¬Í×¤Ç¤¹¡£ (Ë¾¤Þ¤·¤¯¤Ï 2.0.38 °Ê¹ß¤Î ºÇ¿·¤Î¥«¡¼¥Í¥ë¤¬ÎÉ¤¤¤Ç¤¹¡£) <item>¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë¤¬½é¤á¤Æ¤Ç¤â¡¢¶²¤¬¤ë¤³¤È¤Ï¤¢¤ê¤Þ¤»¤ó¡£ ¼Â¤Î½ê¤«¤Ê¤ê´ÊÃ±¤Ç¤¹¤·¡¢ <ref id="2.0.x-Requirements" name="2.0.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤Ç¼¨¤¹´ö¤Ä¤«¤Î URL ¤Ç¤â°·¤ï¤ì¤Æ¤¤¤Þ¤¹¡£ <item>¼¡¤Î¥³¥Þ¥ó¥É¤Ë¤Æ¥«¡¼¥Í¥ë¥½¡¼¥¹¤ò <tt>/usr/src/</tt> ¥Ç¥£¥ì¥¯¥È¥ê¤Ø Å¸³«¤·¤Æ¤¯¤À¤µ¤¤ - <tt>tar xvzf linux-2.0.x.tar.gz -C /usr/src</tt> ¤³¤³¤Ç¡¢2.0.x ¤Î "x" ¤Ï Linux 2.0 ¥«¡¼¥Í¥ë¤Î¸½ºß¤Î¥Ð¡¼¥¸¥ç¥ó¥Ê¥ó¥Ð¡¼ ¤Ç¤¹¡£ ´°Î»¤·¤Þ¤·¤¿¤é¡¢ <tt>/usr/src/linux/</tt> ¤È¤¤¤¦¥Ç¥£¥ì¥¯¥È¥ê¤¬¤¢¤ë¤«¡¢ ¤Þ¤¿¤Ï¥·¥ó¥Ü¥ê¥Ã¥¯¥ê¥ó¥¯¤¬Ä¥¤é¤ì¤Æ¤¤¤ë¤³¤È¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ <item>Å¬Åö¤Ê¡¢°¿¤ÏÇ¤°Õ¤Î¥Ñ¥Ã¥Á¤ò¥«¡¼¥Í¥ë¥½¡¼¥¹¥³¡¼¥É¤ËÅö¤Æ¤Æ¤¯¤À¤µ¤¤¡£ ¥«¡¼¥Í¥ë 2.0.36 ¤Î»þÅÀ¤Ç¤Ï¡¢ IP Masq ¤ò²ÔÆ¯¤µ¤»¤ë°Ù¤ÎÆÃ¼ì¤Ê¥Ñ¥Ã¥ÁÅù ¤ÏÉÔÍ×¤Ç¤¹¡£ IPPORTFW, PPTP µÚ¤Ó Xwindow ¤Î¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Îµ¡Ç½¤Ï¥ª¥×¥·¥ç¥ó¤Ç¤¹¡£ <ref id="2.0.x-Requirements" name="2.0.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤Ë¤¢¤ë URL¤È <htmlurl url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤Ë¤¢¤ëºÇ¿·¾ðÊó¤È¥Ñ¥Ã¥Á¤Î URL ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ <item>°Ê²¼¤Ë¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤¹¤ëºÝ¤ËºÇÄã¸ÂÉ¬Í×¤Ê¥ª¥×¥·¥ç¥ó¤ò µ¤·¤Þ¤¹¡£ ¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤¿¥Í¥Ã¥È¥ï¡¼¥¯¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤âÆ±ÍÍ¤ËÀßÄê¤¹¤ëÉ¬Í×¤¬ ¤¢¤ê¤Þ¤¹¡£ ¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤¹¤ëÊýË¡¤Î¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï¡¢ <url url="http://www.linuxdoc.org/HOWTO/Kernel-HOWTO.html" name="Linux Kernel HOWTO"> ¤È¡¢¥«¡¼¥Í¥ë¥½¡¼¥¹¥Ç¥£¥ì¥¯¥È¥ê¤Î README ¥Õ¥¡¥¤¥ë¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ¡ÚÌõÃí: <url url="http://www.linux.or.jp/JF/JFdocs/Kernel-HOWTO.html" name="JF¤Ë¤è¤ë Kernel-HOWTO ¤ÎÆüËÜ¸ìÌõ¤â¤¢¤ê¤Þ¤¹¡£"> ¡Û °Ê²¼¤Î <bf>YES or NO ¤ÎÁªÂò</bf> ¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ Á´¤Æ¤Î¥ª¥×¥·¥ç¥ó¤Ï¤³¤Î HOWTO ¤Ë¤Æ¸å½Ò¤¹¤ëÀµ¤·¤¤¥«¡¼¥Í¥ë¥Ñ¥Ã¥Á¤Ê¤¯¤·¤Æ¡¢ Í¸ú¤È¤Ï¸Â¤ê¤Þ¤»¤ó¡£ </itemize>  <tscreen><verb> * ³«È¯Ãæ¤äÉÔ´°Á´¤Ê¥³¡¼¥É/¥É¥é¥¤¥Ð¤âÉ½¼¨ (CONFIG_EXPERIMENTAL) [Y/n/?] - YES: ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ç IP ¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤Î¥³¡¼¥É¤¬ÁªÂò ¤Ç¤¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£ * ¥í¡¼¥À¥Ö¥ë¡¦¥â¥¸¥å¡¼¥ë¤ò»ÈÍÑ²ÄÇ½¤Ë¤·¤Þ¤¹ (CONFIG_MODULES) [Y/n/?] - YES: ¤³¤ì¤Ç¥«¡¼¥Í¥ë¤Î IP MASQ ¤Î¥â¥¸¥å¡¼¥ë¤¬»È¤¨¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£ * ¥Í¥Ã¥È¥ï¡¼¥¯¤Î¥µ¥Ý¡¼¥È (CONFIG_NET) [Y/n/?] - YES: ¥Í¥Ã¥È¥ï¡¼¥¯¥µ¥Ö¥·¥¹¥Æ¥à¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ * ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ëµ¡Ç½ (CONFIG_FIREWALL) [Y/n/?] - YES: IPFWADM ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥Ä¡¼¥ë¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ * TCP/IP ¥Í¥Ã¥È¥ï¡¼¥¥ó¥° (CONFIG_INET) - YES: TCP/IP ¥×¥í¥È¥³¥ë¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ * IP: ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°/¥²¡¼¥È¥¦¥§¥¤¥ó¥° (CONFIG_IP_FORWARD) - YES: IPFWADM ¤Ë¤ÆÀ©¸æ¤µ¤ì¤ë Linux ¥Í¥Ã¥È¥ï¡¼¥¯¤Î¥Ñ¥±¥Ã¥ÈÅ¾Á÷¤È ¥ë¡¼¥Æ¥£¥ó¥°¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ * IP: syn ¥¯¥Ã¥¡¼ (CONFIG_SYN_COOKIES) [Y/n/?] - YES: ´ðËÜÅª¤Ê¥Í¥Ã¥È¥ï¡¼¥¯¥»¥¥å¥ê¥Æ¥£¤Î°Ù¤Ë¶¯¤¯¤ªÁ¦¤á¤·¤Þ¤¹¡£ * IP: ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ê¥ó¥° (CONFIG_IP_FIREWALL) [Y/n/?] - YES: ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ëµ¡Ç½¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ * IP: ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥Ñ¥±¥Ã¥ÈµÏ¿ (CONFIG_IP_FIREWALL_VERBOSE) [Y/n/?] - YES: (Ç¤°Õ¤Ç¤¹¤¬¶¯¤¯¤ªÁ¦¤á¤·¤Þ¤¹) - ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Ë°ú¤Ã¤«¤«¤Ã¤¿ ¥Ñ¥±¥Ã¥È¤ò¥í¥°¤ËµÏ¿¤·¤Þ¤¹¡£ * IP: ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥° (CONFIG_IP_MASQUERADE [Y/n/?] - YES: ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Î TCP/IP ¥Ñ¥±¥Ã¥È¤ò³°Éô¥Í¥Ã¥È¥ï¡¼¥¯¤Î¤â¤Î¤Ë ½ñ¤´¹¤¨¤ë¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ * IP: ipautofw ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥µ¥Ý¡¼¥È (EXPERIMENTAL) (CONFIG_IP_MASQUERADE_IPAUTOFW) [Y/n/?] - NO: IPautofw ¤Ï ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Î¸Å¤¤ÊýË¡¤Ç¤¹¡£ Æ°ºî¤Ï¤·¤Þ¤¹¤¬¡¢ IPPORTFW ¤ÎÊý¤¬ÎÉ¤¤ÊýË¡¤Ç¤¹¤Î¤Ç¡¢ IPAUTOFW ¤Ï ¤ªÁ¦¤á¤·¤Þ¤»¤ó¡£ * IP: ipportfw ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¥Ý¡¼¥È (EXPERIMENTAL) (CONFIG_IP_MASQUERADE_IPPORTFW) [Y/n/?] - YES: ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï 2.0.x ¥«¡¼¥Í¥ë¤Î¥Ñ¥Ã¥Á¤Ç¤Î¤ßÍ¸ú¤Ç¤¹¡£ ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ç¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î³°Â¦¤Î¥³¥ó¥Ô¥å¡¼¥¿¤È MASQ ¤µ¤ì¤¿ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¾å¤Î¥Þ¥·¥óÆ±»Î¤¬Ä¾ÀÜÅª¤ËÀÜÂ³¤Ç¤¤ë¤è¤¦¤Ë ¤Ê¤ê¤Þ¤¹¡£ Âç³µ¡¢¤³¤Îµ¡Ç½¤ÏÆâÉô¤Î SMTP, TELNET, µÚ¤Ó WWW ¥µ¡¼¥Ð¤Ø¤Î¥¢¥¯¥»¥¹¤Ë ÍÑ¤¤¤é¤ì¤Þ¤¹¡£ FTP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Ï¤³¤Î FAQ ¤Î¾Ï¤Ë¾Ü½Ò¤µ¤ì¤Æ¤¤¤ëÄÉ²Ã¤Î ¥Ñ¥Ã¥Á¤¬É¬Í×¤Ë¤Ê¤ë¤Ç¤·¤ç¤¦¡£ ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Ë´Ø¤¹¤ë¤è¤ê¾ÜºÙ¤Ê¾ðÊó¤Ï¡¢¤³¤Î HOWTO ¤Î ¥Õ¥©¥ï¡¼¥É¤Î¾Ï¤Ë¤¢¤ê¤Þ¤¹¡£ * IP: ICMP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥° (CONFIG_IP_MASQUERADE_ICMP) [Y/n/?] - YES: ICMP ping ¥Ñ¥±¥Ã¥È¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¼Â¸½¤·¤Þ¤¹¡£ Ç¤°Õ¤È»×¤ï¤ì¤Þ¤¹¤¬¡¢Â¿¤¯¤Î¥×¥í¥°¥é¥à¤¬ ICMP ¥µ¥Ý¡¼¥È¤Ê¤¯¤·¤Æ ´°Á´¤Ë¤Ïµ¡Ç½¤·ÆÀ¤Ê¤¤¤Ç¤·¤ç¤¦¡£ * IP: loose UDP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥° (EXPERIMENTAL) (CONFIG_IP_MASQ_LOOSE_UDP) [Y/n/?] - YES: ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï 2.0.x ¥«¡¼¥Í¥ë¤Ë¥Ñ¥Ã¥Á¤òÅ¬ÍÑ¤¹¤ë¤³¤È¤Ë ¤è¤Ã¤Æ¤Î¤ßÍ¸ú¤Ç¤¹¡£ ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ç¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ò·ÐÍ³¤¹¤ë¡¢ NAT ¤òÍÑ¤¤¤ë¤è¤¦¤Ê ¥Í¥Ã¥È¥ï¡¼¥¯ÂÐÀï·¿¥²¡¼¥à¤¬¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¾å¤Î ¥³¥ó¥Ô¥å¡¼¥¿¤Ç½ÐÍè¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£ ¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï¤³¤Î HOWTO ¤Î FAQ ¤Î¾Ï¤Ë·ÇºÜ¤·¤Æ¤¤¤Þ¤¹¡£ * IP: ¾ï¤Ë¥Ç¥Õ¥é¥°¥á¥ó¥È¤¹¤ë (CONFIG_IP_ALWAYS_DEFRAG) [Y/n/?] - YES: ¤³¤Îµ¡Ç½¤Ï IP MASQ ÀÜÂ³¤òºÇÅ¬²½¤·¤Þ¤¹¡£- ¶¯¤¯¤ªÁ¦¤á¤·¤Þ¤¹¡£ * IP: ¥Û¥¹¥È¤È¤·¤Æ¤Ç¤Ï¤Ê¤¯¥ë¡¼¥¿¤È¤·¤ÆºÇÅ¬²½¤¹¤ë (CONFIG_IP_ROUTER) [Y/n/?] - YES: ¤³¤ì¤Ë¤è¤Ã¤Æ¥«¡¼¥Í¥ë¤ò¥Í¥Ã¥È¥ï¡¼¥¯¥µ¥Ö¥·¥¹¥Æ¥à¤È¤·¤Æ ºÇÅ¬²½¤·¤Þ¤¹¡£ * IP: È¯¿®¸µ¥¢¥É¥ì¥¹¤Ç·ÐÏ©ÉÕ¤±¤µ¤ì¤¿¥Õ¥ì¡¼¥à¤òÇË´þ¤¹¤ë (CONFIG_IP_NOSR) [Y/n/?] - YES: ´ðËÜÅª¤Ê¥Í¥Ã¥È¥ï¡¼¥¯¥»¥¥å¥ê¥Æ¥£¤Î°Ù¤Ë¶¯¤¯¤ªÁ¦¤á¤·¤Þ¤¹¡£ * ¥Í¥Ã¥È¥ï¡¼¥¯ÍÑ¥À¥ß¡¼¥É¥é¥¤¥Ð¤Î¥µ¥Ý¡¼¥È (CONFIG_DUMMY) [M/n/y/?] - YES: Ç¤°Õ¤Ç¤¹¤¬¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤ÏÌäÂê¤ò¥Ç¥Ð¥Ã¥°¤¹¤ëºÝ¤Î ½õ¤±¤Ë¤Ê¤ê¤Þ¤¹¡£ * /proc ¥Õ¥¡¥¤¥ë¥·¥¹¥Æ¥à¤Î¥µ¥Ý¡¼¥È (CONFIG_PROC_FS) [Y/n/?] - YES: Linux ¥«¡¼¥Í¥ë¤¬¥Í¥Ã¥È¥ï¡¼¥¯¾å¤Ç¥Ñ¥±¥Ã¥È¤òÅ¾Á÷¤¹¤ë µ¡Ç½¤òÍ¸ú¤Ë¤¹¤ë°Ù¤ËÉ¬Í×¤Ç¤¹¡£ </verb> </tscreen>   Ãí°Õ - ¤³¤ì¤é¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î°Ù¤À¤±¤ËÉ¬Í×¤ÊÍ×ÁÇ¤Ç¤¹¡£ ¤¢¤Ê¤¿¤Î¥Í¥Ã¥È¥ï¡¼¥¯¤ä¥Ï¡¼¥É¥¦¥§¥¢¤ËÆÃÍ¤ÊÂ¾¤ÎÀßÄê¹àÌÜ¤âÁªÂò¤¹¤ë É¬Í×¤¬¤¢¤ê¤Þ¤¹¡£  <itemize> <item>¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤·¤¿¸å¡¢°Ê²¼¤Î¤è¤¦¤Ë IP MASQ ¥â¥¸¥å¡¼¥ë¤ò ¥³¥ó¥Ñ¥¤¥ë¤·¤Æ¡¢¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤¯¤À¤µ¤¤ - <tscreen> <verb> make modules; make modules_install </verb> </tscreen>  <item>¼¡¤Ë¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¥¹¥¯¥ê¥×¥È¤òÆÉ¤ß¹þ¤Þ¤»¡¢¥ê¥Ö¡¼¥È¤ÎÅÙËè¤Ë IP MASQ ¤ò¼«Æ°Åª¤ËÍ¸ú¤Ë¤¹¤ë°Ù¤Ë¡¢ <tt>/etc/rc.d/rc.local</tt> ¤Ë²¿¹Ô¤« ÄÉ²Ã¤·¤Þ¤¹ - <tscreen> <verb> . . . #rc.firewall script - Start IPMASQ and the firewall /etc/rc.d/rc.firewall . . . </verb> </tscreen> </itemize>   <sect2> Linux 2.3.x / 2.4.x ¥«¡¼¥Í¥ë  <bf>¤³¤Î HOWTO ¤Ç¤Ï 2.3.x ¤È 2.4.x ¥«¡¼¥Í¥ë¤ÏÌ¤¤À¼è¤ê°·¤Ã¤Æ¤¤¤Þ¤»¤ó¡£ <ref id="2.3.x/2.4.x-Requirements" name="2.3.x/2.4.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤Ëµ¤µ¤ì¤ë URL ¤ò»²¾È¤¹¤ë¤«¡¢¤½¤ì¤é¤ò¼è¤ê°·¤Ã¤Æ¤¤¤ë¿·¤·¤¤ HOWTO ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£</bf>   <sect1> ¥×¥é¥¤¥Ù¡¼¥È¥Í¥Ã¥È¥ï¡¼¥¯ IP ¥¢¥É¥ì¥¹¤òÆâÉô LAN ¤Ë³ä¤êÅö¤Æ¤ë  Á´¤Æ¤Î <bf>ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¾å¤Ç MASQ ¤µ¤ì¤¿</bf> ¥Þ¥·¥ó¤Ï¡¢ ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ç¸ø¼°¤Ë³ä¤êÅö¤Æ¤é¤ì¤¿¥¢¥É¥ì¥¹¤ò»ý¤Ä¤Ù¤*¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó*¡£ ¤Ç¤¹¤Î¤Ç¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î¥¢¥É¥ì¥¹¤È¤Ö¤Ä¤«¤é¤º¤Ë¡¢ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Î ¥Þ¥·¥ó¤Ë¥¢¥É¥ì¥¹¤ò³ÎÊÝ¤¹¤ë°Ù¤Î¡¢ÆÃ¼ì¤ÇÅ¬ÀÚ¤ÊÊýË¡¤¬Â¸ºß¤·¤Ê¤±¤ì¤Ð ¤Ê¤ê¤Þ¤»¤ó¡£   >¥ª¥ê¥¸¥Ê¥ë¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É FAQ ¤è¤ê -  <htmlurl url="http://www.cis.ohio-state.edu/htbin/rfc/INDEX.rfc.html" name="RFC 1918"> ¤Ï¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ØÄ¾ÀÜÀÜÂ³¤µ¤ì¤Ê¤¤¤«¡¢¤Þ¤¿¤Ï "¥×¥é¥¤¥Ù¡¼¥È" ¥Í¥Ã¥È¥ï¡¼¥¯¤ËÍÑ¤¤¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤Ë´Ø¤¹¤ë¸ø¼°Ê¸½ñ¤Ç¤¹¡£ ¤³¤ÎÍÑÅÓ¤Î°Ù¤ËÆÃÊÌ¤Ë³ä¤êÅö¤Æ¤é¤ì¤¿ 3¤Ä¤Î IP ¥¢¥É¥ì¥¹¤Î¥Ö¥í¥Ã¥¯ ¤¬¤¢¤ê¤Þ¤¹¡£  <tscreen> <verb> Section 3 - ¥×¥é¥¤¥Ù¡¼¥È¥¢¥É¥ì¥¹¶õ´Ö Internet Assigned Numbers Authority (IANA) ¤Ï¡¢IP ¥¢¥É¥ì¥¹¶õ´Ö¤Î¤¦¤Á °Ê²¼¤Î3¤Ä¤Î¥Ö¥í¥Ã¥¯¤ò¥×¥é¥¤¥Ù¡¼¥È¥Í¥Ã¥È¥ï¡¼¥¯ÍÑ¤ËÍ½Ìó¤·¤Æ¤¤¤Þ¤¹¡£ 10.0.0.0 - 10.255.255.255 172.16.0.0 - 172.31.255.255 192.168.0.0 - 192.168.255.255 ºÇ½é¤Î¥Ö¥í¥Ã¥¯¤Ï¡Ö24¥Ó¥Ã¥È¥Ö¥í¥Ã¥¯¡×¡¢2ÈÖÌÜ¤Î¥Ö¥í¥Ã¥¯¤Ï¡Ö20¥Ó¥Ã¥È ¥Ö¥í¥Ã¥¯¡×¡¢3ÈÖÌÜ¤Î¥Ö¥í¥Ã¥¯¤Ï¡Ö16¥Ó¥Ã¥È¡×¥Ö¥í¥Ã¥¯¤È¸Æ¤Ð¤ì¤Þ¤¹¡£ ºÇ½é¤Î¥Ö¥í¥Ã¥¯¤ÏÃ±°ì¤Î¥¯¥é¥¹ A ¥Í¥Ã¥È¥ï¡¼¥¯ÈÖ¹æ°Ê³°¤Î¤Ê¤Ë¤â¤Î¤Ç¤â¤Ê¤¯¡¢ 2ÈÖÌÜ¤Î¥Ö¥í¥Ã¥¯¤ÏÏ¢Â³¤¹¤ë16¸Ä¤Î¥¯¥é¥¹ B ¥Í¥Ã¥È¥ï¡¼¥¯ÈÖ¹æ¤Î½¸¹ç¤Ç¤¢¤ê¡¢ 3ÈÖÌÜ¤Î¥Ö¥í¥Ã¥¯¤ÏÏ¢Â³¤¹¤ë255¸Ä¤Î¥¯¥é¥¹ C ¥Í¥Ã¥È¥ï¡¼¥¯ÈÖ¹æ¤Î½¸¹ç¤Ç¤¢¤ë¤³¤È¤Ë Ãí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ </verb> </tscreen>   »²¹Í¤Î°Ù¤Ë¡¢»ä¤Ï 192.168.0.0 ¤Î¥Í¥Ã¥È¥ï¡¼¥¯¥¢¥É¥ì¥¹¤È 255.255.255.0 ¤Î Class-C ¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯¤òÁªÂò¤·¤Æ¤ª¤ê¡¢¤³¤Î HOWTO ¤Ë¤ª¤¤¤Æ¤â¤³¤ì¤ò È¿±Ç¤·¤Æ¤¤¤Þ¤¹¡£ ¤Ç¤â¡¢¾åµ¤Î¥×¥é¥¤¥Ù¡¼¥È¥Í¥Ã¥È¥ï¡¼¥¯¤ÏÁ´¤ÆÍ¸ú¤Ç¤¹¤±¤ì¤É¤â¡¢É¬¤ºÀµ¤·¤¤ ¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯¤òÍÑ¤¤¤Æ¤¯¤À¤µ¤¤¡£  ¤Ç¤¹¤Î¤Ç¡¢¤â¤· Class-C ¤Î¥Í¥Ã¥È¥ï¡¼¥¯¤ò»È¤¦¤Ê¤é¡¢¤¢¤Ê¤¿¤Î¥Í¥Ã¥È¥ï¡¼¥¯ ¾å¤Î TCP/IP ¥×¥í¥È¥³¥ë¤¬µ¡Ç½¤·¤Æ¤¤¤ë¥Þ¥·¥ó¤Ë³ä¤êÅö¤Æ¤é¤ì¤ëÈÖ¹æ¤Ï¡¢ 192.168.0.1, 192.168.0.2, 192.168.0.3, ..., 192.168.0.x ¤È¤Ê¤ê¤Þ¤¹¡£  192.168.0.1 ¤ÏÂ¿¤¯¤Î¾ì¹ç¡¢³°Éô¥Í¥Ã¥È¥ï¡¼¥¯¤Ø½Ð¤Æ¹Ô¤¯°Ù¤Î ÆâÉô¥²¡¼¥È¥¦¥§¥¤°¿¤Ï Linux MASQ ¥Þ¥·¥ó¤È¤Ê¤ê¤Þ¤¹¡£ 192.168.0.0 ¤È 192.168.0.255 ¤Ï¤½¤ì¤¾¤ì¥Í¥Ã¥È¥ï¡¼¥¯µÚ¤Ó ¥Ö¥í¡¼¥É¥¥ã¥¹¥È¥¢¥É¥ì¥¹¤Ç¤¢¤ë¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤ (¤³¤ì¤é¤Î¥¢¥É¥ì¥¹¤Ï*Í½ÌóºÑ¤ß*¤Ç¤¹) ¡£ ¤³¤ì¤é¤Î¥¢¥É¥ì¥¹¤ò¥Þ¥·¥ó¤Ë³ä¤êÅö¤Æ¤Ê¤¤¤Ç¤¯¤À¤µ¤¤¡¢¤µ¤â¤Ê¤¯¤Ð ¤¢¤Ê¤¿¤Î¥Þ¥·¥ó¤ä¥Í¥Ã¥È¥ï¡¼¥¯¤ÏÀµ¾ï¤ËÆ°ºî¤·¤Þ¤»¤ó¡£ <label id="firewall-examples">  <sect1> IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¥Ý¥ê¥·¡¼¤òÀßÄê¤¹¤ë  ¤³¤ÎÅÀ¤Ë´Ø¤·¤Æ¤Ï¡¢¥«¡¼¥Í¥ë¤È¤½¤ÎÂ¾É¬Í×¤Ê¥Ñ¥Ã¥±¡¼¥¸¤¬¥¤¥ó¥¹¥È¡¼¥ë ¤µ¤ì¤Æ¤¤¤ë¤Ù¤¤Ç¤¹¡£ Á´¤Æ¤Î¥Í¥Ã¥È¥ï¡¼¥¯¤Î IP ¥¢¥É¥ì¥¹¡¢¥²¡¼¥È¥¦¥§¥¤¡¢¤½¤·¤Æ DNS ¥¢¥É¥ì¥¹¤Ï Linux MASQ ¥µ¡¼¥Ð¾å¤Ç¤âÆ±ÍÍ¤ËÀßÄê¤µ¤ì¤Æ¤¤¤ë¤Ù¤¤Ç¤¹¡£ ¤â¤· Linux ¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÎÀßÄêÊýË¡¤òÃÎ¤é¤Ê¤¤¤Ê¤é¡¢¤³¤Î HOWTO ¤Î <ref id="2.0.x-Requirements" name="2.0.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> °¿¤Ï <ref id="2.2.x-Requirements" name="2.2.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  ¤µ¤Æ¡¢ºÇ¸å¤Ë¤ä¤ê»Ä¤·¤¿¤³¤È¤Ï¡¢»ØÄê¤µ¤ì¤¿¥Þ¥·¥ó¤ËÅ¬ÀÚ¤Ë¥Ñ¥±¥Ã¥È¤ò Å¾Á÷ (FORWARD) µÚ¤Ó ¥Þ¥¹¥«¥ì¡¼¥É (MASQUERADE) ¤¹¤ë°Ù¤Î¡¢ IP ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ê¥ó¥°¥Ä¡¼¥ë¤òÀßÄê¤¹¤ë¤³¤È¤Ç¤¹¡£ <quote>  ** ¤³¤Î¼Â¸½¤Ë¤Ï¿§¡¹¤È°ã¤¦ÊýË¡¤¬Âô»³¤¢¤êÆÀ¤Þ¤¹¡£ ¤³¤ì¤«¤é¼¨¤¹Äó°Æ¤È¼ÂÎã¤Ï»ä¤Î½ê¤ÇÆ°ºî¤·¤Æ¤¤¤Þ¤¹¤¬¡¢¤¢¤Ê¤¿¤Ê¤ê¤Î°ã¤¦ ¥¢¥¤¥Ç¥£¥¢¤äÉ¬Í×À¤¬¤¢¤ë¤³¤È¤Ç¤·¤ç¤¦¡£  </quote> <quote>  ¤³¤Î¾Ï¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤¬Æ°ºî¤·ÆÀ¤ë°Ù¤Î¡¢ÁÇ¤ÎºÇÄã¸Â¤Î ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ò¾Ò²ð¤¹¤ë*¤À¤±*¤Ç¤¹¡£ °ìÃ¶ (¤³¤Î HOWTO ¤Ë¤Æ¸å½Ò¤¹¤ë) IP MASQ ¤Î¥Æ¥¹¥È¤¬À®¸ù¤·¤¿¤é¡¢ ¤è¤ê°ÂÁ´¤Ê¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Î°Ù¤Ë <ref id="Strong-IPFWADM-Rulesets" name="¶¯¤¤ IPFWADM ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> ¤È <ref id="Strong-IPCHAINS-Rulesets" name="¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ¹¹¤Ë¡¢¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï IPFWADM (2.0.x) µÚ¤Ó/Ëô¤Ï IPCHAINS (2.2.x) ¤Î¥ª¥ó¥é¥¤¥ó¥Þ¥Ë¥å¥¢¥ë¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ </quote> <label id="rc.firewall-2.2.x">   <sect2> Linux 2.2.x ¥«¡¼¥Í¥ë  2.1.x ¤È 2.2.x ¥«¡¼¥Í¥ë¤ÎÎ¾Êý¤Ë¤Æ IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Î¥ë¡¼¥ë¤ò Áàºî¤¹¤ë°Ù¤Ë¡¢ <bf>IPFWADM ¤Ï¤â¤Ï¤ä¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥Ä¡¼¥ë¤È¤·¤Æ¤Ï »È¤¨¤Ê¤¤</bf> ¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ º£¡¢¤³¤ì¤é¿·¤·¤¤¥«¡¼¥Í¥ë¤Ç¤Ï IPCHAINS ¥Ä¡¼¥ë¤ò»È¤¤¤Þ¤¹¡£ ¤³¤ÎÊÑ¹¹¤Ë´Ø¤¹¤ë¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï¡¢ <ref id="FAQ" name="¤è¤¯¤¢¤ë¼ÁÌä (FAQ)"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  ½éÊâÅª¤ÇÃ±½ã¤Ê¥ë¡¼¥ë¥»¥Ã¥È¤Ë¤Æ¡¢ °Ê²¼¤Ëµ¤¹¤è¤¦¤Ë /etc/rc.d/rc.firewall ¤òºîÀ®¤·¤Þ¤¹ -  <tscreen><verb> #!/bin/sh # # rc.firewall - IPCHAINS ¤òÍÑ¤¤¤¿¡¢ 2.1.x µÚ¤Ó 2.2.x ¥«¡¼¥Í¥ë¤Î°Ù¤Î¡¢ # ½éÊâÅª¤ÇÃ±½ã¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥Æ¥¹¥È # # # É¬Í×¤Ê IP MASQ ¥â¥¸¥å¡¼¥ë¤òÁ´¤ÆÆÉ¤ß¹þ¤ß¤Þ¤¹¡£ # # Ãí°Õ - É¬Í×¤È¤¹¤ë IP MASQ ¥â¥¸¥å¡¼¥ë¤À¤±¤ò¥í¡¼¥É¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¸½ºß¤Î IP MASQ ¥â¥¸¥å¡¼¥ë¤ÎÁ´¤Æ¤¬°Ê²¼¤Ëµ¤µ¤ì¤Æ¤¤¤Þ¤¹¤¬¡¢ # ¥³¥á¥ó¥È¥¢¥¦¥È¤¹¤ì¤Ð¥í¡¼¥É¤òÍÞ»ß¤Ç¤¤Þ¤¹¡£ </verb></tscreen>    <tscreen><verb> # ¥â¥¸¥å¡¼¥ë¤Î¥í¡¼¥É¤Î½é´üÃÊ³¬¤ËÉ¬Í×¤Ç¤¹¡£ # /sbin/depmod -a # PORT ¥á¥½¥Ã¥É¤òÍÑ¤¤¤¿ FTP ¥Õ¥¡¥¤¥ëÅ¾Á÷¤ÎÅ¬ÀÚ¤Ê¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò # ¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ # ¡ÚÌõÃí: PORT ¥á¥½¥Ã¥É¤Ï¥Ñ¥Ã¥·¥Ö¥â¡¼¥É¤Ç¤Ê¤¤¡¢ÄÌ¾ï¤Î FTP ÀÜÂ³¤ò»Ø¤·¤Þ¤¹¡£ # ÀÜÂ³¸å¡¢¥Ç¡¼¥¿¥Ý¡¼¥È¤ò»ÈÍÑ¤¹¤ëºÝ¤Ë¡¢ FTP ¥µ¡¼¥ÐÂ¦¤«¤é¥¯¥é¥¤¥¢¥ó¥ÈÂ¦¤Ë # ÂÐ¤·¤Æ TCP ÀÜÂ³¤ò³ÎÎ©¤·¤è¤¦¤È¤·¤Þ¤¹¡£ # ¤³¤Î¥â¥¸¥å¡¼¥ë¤Ï FTP ¥¯¥é¥¤¥¢¥ó¥È¤ò¥Ñ¥Ã¥·¥Ö¥â¡¼¥É¤Ç»ÈÍÑ¤¹¤ëºÝ¤Ë¤ÏÉÔÍ× # ¤Ç¤¹¡£¡Û # /sbin/modprobe ip_masq_ftp # UDP ¾å¤Ç RealAudio ¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ # ¤³¤Î¥â¥¸¥å¡¼¥ë¤¬¤Ê¤¤¤È¡¢ RealAudio ¤Ïµ¡Ç½¤·¤Þ¤¹¤¬¡¢ TCP ¥â¡¼¥É¤ÇÆ°ºî # ¤·¡¢¤½¤Î·ë²Ì¤È¤·¤Æ²»¼Á¤ÎÎô²½¤ò¤Ò¤µ¯¤³¤·¤Þ¤¹¡£ # #/sbin/modprobe ip_masq_raudio </verb></tscreen>   <tscreen><verb> # IRC ¤Ë¤ª¤±¤ë DCC ¥Õ¥¡¥¤¥ëÅ¾Á÷¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ # #/sbin/modprobe ip_masq_irc </verb></tscreen> <tscreen> ¡ÚÌõÃí: DCC (Direct Client Connection) ¤È¤Ï¡¢client Æ±»Î¤¬ IRC server ¤ò ²ð¤µ¤º¤ËÄ¾ÀÜ connection ¤òÄ¥¤Ã¤Æ¥Õ¥¡¥¤¥ë¤òÁ÷¼õ¤·¤¿¤ê¡¢²ñÏÃ¤ò¤·¤¿¤ê¤¹¤ë ¤·¤¯¤ß¤ò»Ø¤·¤Þ¤¹¡£ DCC ¤Î¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï <htmlurl url="http://www.linux.or.jp/JF/JFdocs/irchat-micro-howto.html" name="irchat-micro-howto"> ¤ä¡¢ <htmlurl url="ftp://ftp.kyoto.wide.ad.jp/IRC/irchat/irchat-2.4jp24k.tar.gz" name="irchat-jp ¥Ñ¥Ã¥±¡¼¥¸"> ¤ËÅºÉÕ¤µ¤ì¤Æ¤¤¤ë FAQ-about-jp24.txt Åù¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£¡Û </tscreen>   <tscreen><verb> # ¥Ç¥Õ¥©¥ë¥È¤Ç Quake µÚ¤Ó QuakeWorld ¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ # ¤³¤Î¥â¥¸¥å¡¼¥ë¤Ï Linux MASQ ¥µ¡¼¥Ð¤Î¸å¤íÂ¦¤Ë¤¤¤ëÊ£¿ô¤Î¥æ¡¼¥¶¤Î°Ù¤Ë¤¢¤ê # ¤Þ¤¹¡£ # Quake I, II, µÚ¤Ó III ¤ò¥×¥ì¥¤¤¹¤ë¤Ä¤â¤ê¤Ê¤é¡¢ 2ÈÖÌÜ¤ÎÎã¤òÍÑ¤¤¤Æ¤¯¤À¤µ¤¤¡£ # # Ãí°Õ - ¤â¤· QUAKE ¥â¥¸¥å¡¼¥ë¤Î¥í¡¼¥É¤Ë¼ºÇÔ¤·¤Æ ERROR ¤¬É½¼¨¤µ¤ì¤¿¤é¡¢ # ----- ¤½¤ì¤Ï¥Ð¥°¤¬´Þ¤Þ¤ì¤¿¸Å¤¤¥«¡¼¥Í¥ë¤Ç¤¹¡£ºÇ¿·¤Î¥«¡¼¥Í¥ë¤Ë¹¹¿·¤·¤Æ # ¤¯¤À¤µ¤¤¡£ # #Quake I / QuakeWorld (26000 µÚ¤Ó 27000 ÈÖ¥Ý¡¼¥È) #/sbin/modprobe ip_masq_quake # #Quake I/II/III / QuakeWorld (26000, 27000, 27910, 27960 ÈÖ¥Ý¡¼¥È) #/sbin/modprobe ip_masq_quake 26000,27000,27910,27960 # CuSeeme ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥§¥¢¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ # #/sbin/modprobe ip_masq_cuseeme # VDO-live ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥§¥¢¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ # #/sbin/modprobe ip_masq_vdolive </verb></tscreen>   <tscreen><verb> #½ÅÍ× - ¥Ç¥Õ¥©¥ë¥È¤ÇÌµ¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤ë IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ # # Redhat ¥æ¡¼¥¶¤Ø - /etc/sysconfig/network ¤ò°Ê²¼¤Î¤è¤¦¤Ë # ½ñ¤´¹¤¨¤Æ¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤òÊÑ¹¹¤Ç¤¤ë # È¦¤Ç¤¹¤Î¤Ç¡¢»î¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ # # FORWARD_IPV4=false # ¢ # FORWARD_IPV4=true # echo "1" > /proc/sys/net/ipv4/ip_forward #½ÅÍ× - 2.2.x ¥«¡¼¥Í¥ë¤Î¥Ç¥Õ¥©¥ë¥È¤ÇÌµ¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤ë IP ¥Ç¥Õ¥é¥°¥á¥ó¥È # (ºÇÅ¬²½)¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ # ¤³¤ì¤Ï¥³¥ó¥Ñ¥¤¥ë»þ¤Î¥ª¥×¥·¥ç¥ó¤ÇÍ¸ú¤Ç¤·¤¿¤¬¡¢ 2.2.12 ¤Î»þ¤Ë # ¤½¤ÎÆ°ºî¤¬ÊÑ¹¹¤µ¤ì¤Æ¤·¤Þ¤¤¤Þ¤·¤¿¡£ # echo "1" > /proc/sys/net/ipv4/ip_always_defrag </verb></tscreen>   <tscreen><verb> # Æ°Åª IP ¥æ¡¼¥¶¤Ø - # # ¤â¤· SLIP, PPP, °¿¤Ï DHCP ¤ÇÆ°Åª¤Ë IP ¥¢¥É¥ì¥¹¤òÆÀ¤Æ¤¤¤ë¤Ê¤é¡¢¤³¤³¤Ë # µ¤¹°Ê²¼¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¤³¤ì¤Ë¤è¤Ã¤Æ IP MASQ ¤Ë¤ª¤¤¤ÆÆ°Åª IP ¥¢¥É¥ì¥¹¤Î¥Ï¥Ã¥¥ó¥°¤ò¼Â¸½¤·¡¢ # ÍÆ°×¤Ë Diald ¤äÆ±ÍÍ¤Î¥×¥í¥°¥é¥à¤Î²ÔÆ¯»þ´Ö¤ò¿¤Ð¤·¤Þ¤¹¡£ # #echo "1" > /proc/sys/net/ipv4/ip_dynaddr ¡ÚÌõÃí: ¤³¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤¹¤ë¤È¡¢ ppp Åù¤ÎºÆÀÜÂ³»þ¡¢¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î IP ¥¢¥É¥ì¥¹¤¬ÊÑ¤ï¤Ã¤Æ¤â¡¢°ÊÁ°¤Î¥Þ¥¹¥«¥ì¡¼¥É¥Æ¡¼¥Ö¥ë¤òÇË´þ¤»¤º¡¢ IP ¥¢¥É¥ì¥¹ ¤ò½ñ¤´¹¤¨¤ÆºÆÍøÍÑ¤·¤Þ¤¹¡£¡Û </verb></tscreen>   <tscreen><verb> # ´ö¤Ä¤«¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÂÐ±þ¥²¡¼¥à¤¬Í×µá¤¹¤ë¡¢¥ë¡¼¥º UDP ¥Ñ¥Ã¥Á¤ò # Í¸ú¤Ë¤·¤Þ¤¹¡£ # # IP ¥Þ¥¹¥«¥ì¡¼¥É¥Ü¥Ã¥¯¥¹±Û¤·¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÂÐ±þ¥²¡¼¥à¤ò¤ä¤ê¤¿¤¯¤Æ¡¢ # ¤½¤Î¥²¡¼¥à¤òÎ©¤Á¾å¤²¤ÆºÆÀßÄê¤¹¤ë¤³¤È¤Ê¤¯³Ú¤·¤ß¤¿¤¤¤Ê¤é¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤ò # Í¸ú¤Ë¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤ ("#" ¤Ë¤è¤ë¥³¥á¥ó¥È¥¢¥¦¥È¤òºï½ü¤·¤Þ¤¹) ¡£ # ÆâÉô¥Þ¥·¥ó¤¬ UDP ¥Ý¡¼¥È¥¹¥¥ã¥ó¤Ç¹¶·â¤µ¤ì¤ä¤¹¤¯¤Ê¤ë²ÄÇ½À¤¬¤¢¤ë¤Î¤Ç¡¢ # ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤ÏÌµ¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£ # #echo "1" > /proc/sys/net/ipv4/ip_masq_udp_dloose </verb></tscreen>   <tscreen><verb> # MASQ ¥¿¥¤¥à¥¢¥¦¥ÈÃÍ # # TCP ¥»¥Ã¥·¥ç¥ó¤Ë¤ª¤¤¤Æ 2 »þ´Ö¤Î¥¿¥¤¥à¥¢¥¦¥ÈÃÍ¤ò¡¢ # TCP/IP "FIN" ¥Ñ¥±¥Ã¥È¤ò¼õ¿®¸å¤Î¥È¥é¥Õ¥£¥Ã¥¯¤Ë¤ª¤¤¤Æ 10 ÉÃ¤Î¥¿¥¤¥à¥¢¥¦¥È # ÃÍ¤ò¡¢ # UDP ¥È¥é¥Õ¥£¥Ã¥¯¤Ë¤ª¤¤¤Æ 160 ÉÃ¤Î¥¿¥¤¥à¥¢¥¦¥ÈÃÍ(MASQ ¤µ¤ì¤¿ ICQ ¥æ¡¼¥¶ # ¤Î°Ù¤Ë½ÅÍ×¤Ç¤¹) ¤òÀßÄê¤·¤Þ¤¹¡£ # /sbin/ipchains -M -S 7200 10 160 # DHCP - ADSL ¤ä ¥±¡¼¥Ö¥ë¥â¥Ç¥à¤Î¥æ¡¼¥¶¤Î¤è¤¦¤Ê¡¢DHCP °¿¤Ï BOOTP ¤Î # ¤¤¤º¤ì¤«¤«¤é³°Éô IP ¥¢¥É¥ì¥¹¤ò¼èÆÀ¤¹¤ë¿Í¤Ï¡¢¤³¤Î¸å¤Ëµ½Ò¤µ¤ì¤ë # ipchains ¤Î deny ¥³¥Þ¥ó¥É¤ÎÁ°¤Ë¤³¤Î¹Ô¤òÉ¬Í×¤È¤·¤Þ¤¹¡£ # "bootp_client_net_if_name" ¤Ë¤Ï DHCP/BOOTP ¥µ¡¼¥Ð¤¬¥¢¥É¥ì¥¹¤ò # ³ä¤êÅö¤Æ¤ë¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾¤Ë½ñ¤´¹¤¨¤Æ¤¯¤À¤µ¤¤¡£ # ¶²¤é¤¯ "eth0", "eth1" Åù¤Ë¤Ê¤ë¤³¤È¤Ç¤·¤ç¤¦¡£ # # ¤³¤ÎÎã¤Ïº£¤Î½ê¥³¥á¥ó¥È¥¢¥¦¥È¤·¤Æ¤¤¤Þ¤¹¡£ # #/sbin/ipchains -A input -j ACCEPT -i bootp_clients_net_if_name -s 0/0 67 -d 0/0 68 -p udp # Ã±½ã¤Ê IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°µÚ¤Ó¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ # # Ãí°Õ - °Ê²¼¤ÎÎã¤Ï 192.168.0.x ¤ÎÆâÉô LAN ¥¢¥É¥ì¥¹¤Ç 255.255.255.0 Ëô¤Ï # "24" ¥Ó¥Ã¥È¤Î¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯¤è¤ê¤Ê¤ë¥Í¥Ã¥È¥ï¡¼¥¯¤¬¡¢ eth0 # ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤òÄÌ¤¸¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ØÀÜÂ³¤µ¤ì¤ë¾ì¹ç¤òµ¤·¤Æ # ¤¤¤Þ¤¹¡£ # # ** ¤¢¤Ê¤¿¤ÎÆâÉô LAN ¤ÎÀßÄê¤Ë¹ç¤¦¤è¤¦¤Ë¡¢¥Í¥Ã¥È¥ï¡¼¥¯ÈÖ¹æ¡¢ # ** ¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯µÚ¤Ó¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾ # ** ¤òÊÑ¹¹¤·¤Æ¤¯¤À¤µ¤¤¡£ # /sbin/ipchains -P forward DENY /sbin/ipchains -A forward -i eth0 -s 192.168.0.0/24 -j MASQ </verb></tscreen>   °ìÃ¶ /etc/rc.d/rc.firewall ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÊÔ½¸¤·½ª¤¨¤¿¤é¡¢¼Â¹Ô²ÄÇ½¤Ë ¤¹¤ë¤è¤¦¤Ë <tt>chmod 700 /etc/rc.d/rc.firewall</tt> ¤òÆþÎÏ¤·¡¢¼Â¹Ô¤·¤Æ ¤¯¤À¤µ¤¤¡£  ¤µ¤Æ¡¢¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Î½àÈ÷¤¬À°¤¤¤Þ¤·¤¿¡£ ¤³¤ì¤ò¥ê¥Ö¡¼¥È¸å¤Ë¼Â¹Ô¤µ¤»¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¼Â¹Ô¤Ë¤Ï¡¢Ëè²ó¼ê¤Ç¹Ô¤¦ÊýË¡ (¶ìÄË¤Ç¤¹) ¤«¡¢¥Ö¡¼¥È¥¹¥¯¥ê¥×¥È¤ËÄÉ²Ã¤¹¤ëÊýË¡ ¤¬¤¢¤ê¤Þ¤¹¡£ °Ê²¼¤Ë 2¤Ä¤ÎÊýË¡¤òµ¤·¤Æ¤ª¤¤Þ¤·¤¿ -  <itemize>Redhat µÚ¤Ó Redhat ¤«¤éÇÉÀ¸¤·¤¿¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó - <item>µ¯Æ°¥¹¥¯¥ê¥×¥È¤Î¥í¡¼¥É¤Ë´Ø¤·¡¢ Redhat ¤Ë¤Ï 2¤Ä¤ÎÊýË¡¤¬¤¢¤ê¤Þ¤¹ - /etc/rc.d/rc.local °¿¤Ï /etc/rc.d/init.d/ ¤ÎÃæ¤Ë¤¢¤ë init ¥¹¥¯¥ê¥×¥È¤Ç¤¹¡£ Á°¼Ô¤ÎÊýË¡¤¬ºÇ¤â´ÊÃ±¤Ç¤¹¡£¤ä¤ë¤Ù¤¤³¤È¤Ï°Ê²¼¤Î¹Ô¤ò /etc/rc.d/rc.local ¥Õ¥¡¥¤¥ë¤ÎºÇ¸å¤ËÄÉ²Ã¤¹¤ë¤³¤È¤Ç¤¹ - <itemize> echo "Loading the rc.firewall ruleset.." /etc/rc.d/rc.firewall </itemize> ¤³¤Î¼êË¡¤ÎÌäÂêÅÀ¤Ï¡¢¶¯¸Ç¤Ê¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÆ°ºî¤µ¤»¤è¤¦¤È ¤¹¤ëºÝ¤Ë¡¢¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Ï¥Ö¡¼¥È½ªÎ»¤Ë»ê¤ë¤Þ¤Ç¼Â¹Ô¤µ¤ì¤Ê¤¤¡¢¤È¤¤¤¦ÅÀ¤Ë ¤¢¤ê¤Þ¤¹¡£ ¹¥¤Þ¤·¤¤¼êË¡¤È¤·¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥µ¥Ö¥·¥¹¥Æ¥à¤ÎÀßÄê¤¬¥í¡¼¥É¤µ¤ì¤¿Ä¾¸å¤Ë¡¢ ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤ÎÀßÄê¤¬¥í¡¼¥É¤µ¤ì¤ë¤è¤¦¤Ë¤¹¤ë¤³¤È¤Ç¤¹¡£ º£¤Î½ê¡¢¤³¤Î HOWTO ¤Ï /etc/rc.d/rc.local ¤ÎÀßÄê¤Î¤ß¤ò°·¤Ã¤Æ¤¤¤Þ¤¹¡£ ¤è¤ê¶¯¸Ç¤Ê¥·¥¹¥Æ¥à¤ò¤ªË¾¤ß¤Ê¤é¡¢ ¤³¤Î HOWTO ¤ÎºÇ¸å¤Î¾Ï¤Ë¥ê¥ó¥¯¤¬¤¢¤ë TrinityOS ¤Î10¾Ï¤ò»²¾È¤¹¤ë¤³¤È¤ò¤ªÁ¦¤á ¤·¤Þ¤¹¡£ </itemize>  <itemize>Slackware - <item>µ¯Æ°¥¹¥¯¥ê¥×¥È¤Î¥í¡¼¥É¤Ë´Ø¤·¡¢ Slackware ¤Ë¤Ï 2¤Ä¤ÎÊýË¡¤¬¤¢¤ê¤Þ¤¹ - /etc/rc.d/rc.local °¿¤Ï /etc/rc.d/rc.inet2 ¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤¹¤ë¤³¤È¤Ç¤¹¡£ Á°¼Ô¤ÎÊýË¡¤¬ºÇ¤â´ÊÃ±¤Ç¤¹¡£¤ä¤ë¤Ù¤¤³¤È¤Ï°Ê²¼¤Î¹Ô¤ò /etc/rc.d/rc.local ¥Õ¥¡¥¤¥ë¤ÎºÇ¸å¤ËÄÉ²Ã¤¹¤ë¤³¤È¤Ç¤¹ - <itemize> echo "Loading the rc.firewall ruleset.." /etc/rc.d/rc.firewall </itemize> ¤³¤Î¼êË¡¤ÎÌäÂêÅÀ¤Ï¡¢¶¯¸Ç¤Ê¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÆ°ºî¤µ¤»¤è¤¦¤È ¤¹¤ëºÝ¤Ë¡¢¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Ï¥Ö¡¼¥È½ªÎ»¤Ë»ê¤ë¤Þ¤Ç¼Â¹Ô¤µ¤ì¤Ê¤¤¡¢¤È¤¤¤¦ÅÀ¤Ë ¤¢¤ê¤Þ¤¹¡£ ¹¥¤Þ¤·¤¤¼êË¡¤È¤·¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥µ¥Ö¥·¥¹¥Æ¥à¤ÎÀßÄê¤¬¥í¡¼¥É¤µ¤ì¤¿Ä¾¸å¤Ë¡¢ ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤ÎÀßÄê¤¬¥í¡¼¥É¤µ¤ì¤ë¤è¤¦¤Ë¤¹¤ë¤³¤È¤Ç¤¹¡£ º£¤Î½ê¡¢¤³¤Î HOWTO ¤Ï /etc/rc.d/rc.local ¤ÎÀßÄê¤Î¤ß¤ò°·¤Ã¤Æ¤¤¤Þ¤¹¡£ ¤è¤ê¶¯¸Ç¤Ê¥·¥¹¥Æ¥à¤ò¤ªË¾¤ß¤Ê¤é¡¢¤³¤Î HOWTO ¤ÎºÇ¸å¤Î¾Ï¤Ë¥ê¥ó¥¯¤¬¤¢¤ë TrinityOS ¤Î10¾Ï¤ò»²¾È¤¹¤ë¤³¤È¤ò¤ªÁ¦¤á¤·¤Þ¤¹¡£ </itemize>  <bf>¾å½Ò¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÊÑ¹¹¤·¤¿¤¤¥æ¡¼¥¶¤Ø¤ÎÃí°Õ - </bf>  ´°Á´¤Ê TCP/IP ¥Í¥Ã¥È¥ï¡¼¥¯¤ò¼Â¸½¤¹¤ë¾å½Ò¤ÎÊýË¡¤ÎÂå¤ï¤ê¤Ë¡¢*Ã±ÂÎ¤Î¥Þ¥·¥ó ¤À¤±*¤Î IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¼Â¸½¤·¤¿¤¤¤È»×¤¦Êý¤â¤¤¤ë¤³¤È¤Ç¤·¤ç¤¦¡£ Îã¤¨¤Ð¡¢»ä¤Ï 192.168.0.2 ¤È 192.168.0.8 ¤Î¥Û¥¹¥È¤À¤±¤ò¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø ÀÜÂ³¤µ¤»¤¿¤¤¤È¤·¤Þ¤¹¡£¤³¤Î»þÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¾å¤ËÂ¾¤Î¥Þ¥·¥ó¤ÏÂ¸ºß¤·¤Þ¤»¤ó¡£ »ä¤Ï (¾å½Ò¤Î) "Ã±½ã¤Ê IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°µÚ¤Ó¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¼Â¸½¤¹¤ë" ¤Î¾Ï¤Î¡¢ /etc/rc.d/rc.firewall ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ò¡¢°Ê²¼¤Î¤è¤¦¤Ë½ñ¤´¹¤¨¤Þ¤¹¡£  <tscreen> <verb> #!/bin/sh # # Ã±½ã¤Ê IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°µÚ¤Ó¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ # # Ãí°Õ - °Ê²¼¤ÎÎã¤Ï 192.168.0.x ¤ÎÆâÉô LAN ¥¢¥É¥ì¥¹¤Ç 255.255.255.0 Ëô¤Ï # "24" ¥Ó¥Ã¥È¤Î¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯¤è¤ê¤Ê¤ë¥Í¥Ã¥È¥ï¡¼¥¯¤¬¡¢ eth0 # ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤òÄÌ¤¸¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ØÀÜÂ³¤µ¤ì¤ë¾ì¹ç¤òµ¤·¤Æ # ¤¤¤Þ¤¹¡£ # # ** ¤¢¤Ê¤¿¤ÎÆâÉô LAN ¤ÎÀßÄê¤Ë¹ç¤¦¤è¤¦¤Ë¡¢¥Í¥Ã¥È¥ï¡¼¥¯ÈÖ¹æ¡¢ # ** ¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯µÚ¤Ó¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾ # ** ¤òÊÑ¹¹¤·¤Æ¤¯¤À¤µ¤¤¡£ # /sbin/ipchains -P forward DENY /sbin/ipchains -A forward -i eth0 -s 192.168.0.2/32 -j MASQ /sbin/ipchains -A forward -i eth0 -s 192.168.0.8/32 -j MASQ </verb> </tscreen>  <bf>¤è¤¯¤¢¤ë´Ö°ã¤¤ - </bf>  ½é´üÃÊ³¬¤Î IP Masq ¥æ¡¼¥¶¤¬ÈÈ¤·¤¬¤Á¤Ê¤è¤¯¤¢¤ë´Ö°ã¤¤¤È¤·¤Æ¡¢ °Ê²¼¤Î¤è¤¦¤Ê¥³¥Þ¥ó¥É¤¬¤¢¤ê¤Þ¤¹ - /sbin/ipchains -P forward masquerade  ·è¤·¤Æ¡¢¥Ç¥Õ¥©¥ë¥È¥Ý¥ê¥·¡¼¤ò¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ë¤·¤Æ¤Ï<bf>¤¤¤±¤Þ¤»¤ó</bf>¡£ ¤µ¤â¤Ê¤¯¤Ð¡¢·ÐÏ©¥Æ¡¼¥Ö¥ë¤òÁàºî¤Ç¤¤ëÃ¯¤«¤¬¤¢¤Ê¤¿¤Î¥²¡¼¥È¥¦¥§¥¤¥Þ¥·¥ó¤Ë ·ê¤ò³«¤±¡¢¼«¿È¤Î¿È¸µ¤ò¥Þ¥¹¥«¥ì¡¼¥É¤·¤Æ¤·¤Þ¤¦¤«¤âÃÎ¤ì¤Ê¤¤¤«¤é¤Ç¤¹!  ·«¤êÊÖ¤·¤Þ¤¹¡¢¤³¤ì¤é¤Î¹Ô¤Ï <tt>/etc/rc.d/rc.firewall</tt> ¥Õ¥¡¥¤¥ë¤«¡¢ ¤¢¤Ê¤¿¤¬ÁªÂò¤¹¤ëÂ¾¤Î rc ¥Õ¥¡¥¤¥ë¤Î¤¦¤Á¤Î°ì¤Ä¤ËÄÉ²Ã¤Ç¤¤ë¤«¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÉ¬Í×¤È¤¹¤ëÅÙËè¤Ë¼êºî¶È¤Ç¼Â¹Ô¤Ç¤¤Þ¤¹¡£  IPCHAINS ¤È¶¯¸Ç¤Ê IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ÎÎã¤Î¾ÜºÙ¤Ê¼ê°ú¤Ë´Ø¤·¤Æ¤Ï¡¢ <ref id="Strong-IPFWADM-Rulesets" name="¶¯¤¤ IPFWADM ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> ¤È <ref id="Strong-IPCHAINS-Rulesets" name="¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ¹¹¤Ë¾ÜºÙ¤Ê IPCHAINS ¤Î»È¤¤Êý¤Ë´Ø¤·¤Æ¤Ï¡¢¥×¥é¥¤¥Þ¥ê IPCHAINS ¥µ¥¤¥È¤Ç¤¢¤ë <htmlurl url="http://netfilter.filewatcher.org/ipchains/" name="http://netfilter.filewatcher.org/ipchains/"> ¤«¡¢ <htmlurl url="http://www.linuxdoc.org/HOWTO/IPCHAINS-HOWTO.html" name="Linux IP CHAINS HOWTO Backup"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <label id="rc.firewall-2.0.x">  <sect2> Linux 2.0.x ¥«¡¼¥Í¥ë  ½éÊâÅª¤ÇÃ±½ã¤Ê¥ë¡¼¥ë¥»¥Ã¥È¤Ë¤Æ¡¢ °Ê²¼¤Ëµ¤¹¤è¤¦¤Ë /etc/rc.d/rc.firewall ¤òºîÀ®¤·¤Þ¤¹ -  <tscreen> <verb> # rc.firewall - IPFWADM ¤òÍÑ¤¤¤¿¡¢ 2.0.x ¥«¡¼¥Í¥ë¤Î°Ù¤Î¡¢ # ½éÊâÅª¤ÇÃ±½ã¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÎÀßÄê # # É¬Í×¤Ê IP MASQ ¥â¥¸¥å¡¼¥ë¤òÁ´¤ÆÆÉ¤ß¹þ¤ß¤Þ¤¹¡£ # # Ãí°Õ - É¬Í×¤È¤¹¤ë IP MASQ ¥â¥¸¥å¡¼¥ë¤À¤±¤ò¥í¡¼¥É¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¸½ºß¤Î IP MASQ ¥â¥¸¥å¡¼¥ë¤ÎÁ´¤Æ¤¬°Ê²¼¤Ëµ¤µ¤ì¤Æ¤¤¤Þ¤¹¤¬¡¢ # ¥³¥á¥ó¥È¥¢¥¦¥È¤¹¤ë¤³¤È¤Ç¥í¡¼¥É¤òÍÞ»ß¤¹¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ # ¥â¥¸¥å¡¼¥ë¤Î¥í¡¼¥É¤Î½é´üÃÊ³¬¤ËÉ¬Í×¤Ç¤¹¡£ # # /sbin/depmod -a # Supports the proper masquerading of FTP file transfers using the PORT method # PORT ¥á¥½¥Ã¥É¤òÍÑ¤¤¤¿ FTP ¥Õ¥¡¥¤¥ëÅ¾Á÷¤ÎÅ¬ÀÚ¤Ê¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò # ¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ # ¡ÚÌõÃí: PORT ¥á¥½¥Ã¥É¤Ï¥Ñ¥Ã¥·¥Ö¥â¡¼¥É¤Ç¤Ê¤¤¡¢ÄÌ¾ï¤Î FTP ÀÜÂ³¤ò»Ø¤·¤Þ¤¹¡£ # ÀÜÂ³¸å¡¢¥Ç¡¼¥¿¥Ý¡¼¥È¤ò»ÈÍÑ¤¹¤ëºÝ¤Ë¡¢ FTP ¥µ¡¼¥ÐÂ¦¤«¤é¥¯¥é¥¤¥¢¥ó¥ÈÂ¦¤Ë # ÂÐ¤·¤Æ TCP ÀÜÂ³¤ò³ÎÎ©¤·¤è¤¦¤È¤·¤Þ¤¹¡£ # ¤³¤Î¥â¥¸¥å¡¼¥ë¤Ï FTP ¥¯¥é¥¤¥¢¥ó¥È¤ò¥Ñ¥Ã¥·¥Ö¥â¡¼¥É¤Ç»ÈÍÑ¤¹¤ëºÝ¤Ë¤ÏÉÔÍ× # ¤Ç¤¹¡£¡Û # /sbin/modprobe ip_masq_ftp # UDP ¾å¤Ç RealAudio ¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ # ¤³¤Î¥â¥¸¥å¡¼¥ë¤¬¤Ê¤¤¤È¡¢ RealAudio ¤Ïµ¡Ç½¤·¤Þ¤¹¤¬¡¢ TCP ¥â¡¼¥É¤ÇÆ°ºî # ¤·¡¢¤½¤Î·ë²Ì¤È¤·¤Æ²»¼Á¤ÎÎô²½¤ò¤Ò¤µ¯¤³¤·¤Þ¤¹¡£ # #/sbin/modprobe ip_masq_raudio # IRC ¤Ë¤ª¤±¤ë DCC ¥Õ¥¡¥¤¥ëÅ¾Á÷¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ </verb></tscreen> <tscreen> ¡ÚÌõÃí: DCC (Direct Client Connection) ¤È¤Ï¡¢client Æ±»Î¤¬ IRC server ¤ò ²ð¤µ¤º¤ËÄ¾ÀÜ connection ¤òÄ¥¤Ã¤Æ¥Õ¥¡¥¤¥ë¤òÁ÷¼õ¤·¤¿¤ê¡¢²ñÏÃ¤ò¤·¤¿¤ê¤¹¤ë ¤·¤¯¤ß¤ò»Ø¤·¤Þ¤¹¡£ DCC ¤Î¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï <htmlurl url="http://www.linux.or.jp/JF/JFdocs/irchat-micro-howto.html" name="irchat-micro-howto"> ¤ä¡¢ <htmlurl url="ftp://ftp.kyoto.wide.ad.jp/IRC/irchat/irchat-2.4jp24k.tar.gz" name="irchat-jp ¥Ñ¥Ã¥±¡¼¥¸"> ¤ËÅºÉÕ¤µ¤ì¤Æ¤¤¤ë FAQ-about-jp24.txt Åù¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£¡Û </tscreen> <tscreen><verb> # #/sbin/modprobe ip_masq_irc # ¥Ç¥Õ¥©¥ë¥È¤Ç Quake µÚ¤Ó QuakeWorld ¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ # ¤³¤Î¥â¥¸¥å¡¼¥ë¤Ï Linux MASQ ¥µ¡¼¥Ð¤Î¸å¤íÂ¦¤Ë¤¤¤ëÊ£¿ô¤Î¥æ¡¼¥¶¤Î°Ù¤Ë¤¢¤ê # ¤Þ¤¹¡£ # Quake I, II, µÚ¤Ó III ¤ò¥×¥ì¥¤¤¹¤ë¤Ä¤â¤ê¤Ê¤é¡¢ 2ÈÖÌÜ¤ÎÎã¤òÍÑ¤¤¤Æ¤¯¤À¤µ¤¤¡£ # # Ãí°Õ - ¤â¤· QUAKE ¥â¥¸¥å¡¼¥ë¤Î¥í¡¼¥É¤Ë¼ºÇÔ¤·¤Æ ERROR ¤¬É½¼¨¤µ¤ì¤¿¤é¡¢ # ----- ¤½¤ì¤Ï¥Ð¥°¤¬´Þ¤Þ¤ì¤¿¸Å¤¤¥«¡¼¥Í¥ë¤Ç¤¹¡£ºÇ¿·¤Î¥«¡¼¥Í¥ë¤Ë¹¹¿·¤·¤Æ # ¤¯¤À¤µ¤¤¡£ # #Quake I / QuakeWorld (ports 26000 and 27000) #/sbin/modprobe ip_masq_quake # #Quake I/II/III / QuakeWorld (ports 26000, 27000, 27910, 27960) #/sbin/modprobe ip_masq_quake 26000,27000,27910,27960 # CuSeeme ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥§¥¢¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ # #/sbin/modprobe ip_masq_cuseeme # VDO-live ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥§¥¢¤Î¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ # #/sbin/modprobe ip_masq_vdolive #Ã×Ì¿Åª - ¥Ç¥Õ¥©¥ë¥È¤ÇÌµ¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤ë IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ # # Redhat ¥æ¡¼¥¶¤Ø - /etc/sysconfig/network ¤ò°Ê²¼¤Î¤è¤¦¤Ë # ½ñ¤´¹¤¨¤Æ¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤òÊÑ¹¹¤µ¤»¤ë # ¤³¤È¤¬¤Ç¤¤ë¤Ç¤·¤ç¤¦¡£ # # FORWARD_IPV4=false # to # FORWARD_IPV4=true # echo "1" > /proc/sys/net/ipv4/ip_forward #Ã×Ì¿Åª - ¥Ç¥Õ¥©¥ë¥È¤ÇÌµ¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤ë IP ¥Ç¥Õ¥é¥°¥á¥ó¥È(ºÇÅ¬²½)¤òÍ¸ú¤Ë # ¤·¤Þ¤¹¡£ # ¤³¤ì¤Ï¥³¥ó¥Ñ¥¤¥ë»þ¤Î¥ª¥×¥·¥ç¥ó¤ÇÍ¸ú¤Ç¤·¤¿¤¬¡¢ 2.2.12 ¤Î»þ¤Ë # ¤½¤ÎÆ°ºî¤¬ÊÑ¹¹¤µ¤ì¤Æ¤·¤Þ¤¤¤Þ¤·¤¿¡£ # ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï 2.0 µÚ¤Ó 2.2 ¥«¡¼¥Í¥ë¤ÎÎ¾Êý¤ËÉ¬Í×¤Ç¤¹¡£ # echo "1" > /proc/sys/net/ipv4/ip_always_defrag # Æ°Åª IP ¥æ¡¼¥¶¤Ø - # # ¤â¤· SLIP, PPP, °¿¤Ï DHCP ¤ÇÆ°Åª¤Ë IP ¥¢¥É¥ì¥¹¤òÆÀ¤Æ¤¤¤ë¤Ê¤é¡¢¤³¤³¤Ë # µ¤¹°Ê²¼¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¤³¤ì¤Ë¤è¤Ã¤Æ IP MASQ ¤Ë¤ª¤¤¤ÆÆ°Åª IP ¥¢¥É¥ì¥¹¤Î¥Ï¥Ã¥¥ó¥°¤ò¼Â¸½¤·¡¢ # ÍÆ°×¤Ë Diald ¤äÆ±ÍÍ¤Î¥×¥í¥°¥é¥à¤Î²ÔÆ¯»þ´Ö¤ò¿¤Ð¤·¤Þ¤¹¡£ # #echo "1" > /proc/sys/net/ipv4/ip_dynaddr # MASQ ¥¿¥¤¥à¥¢¥¦¥ÈÃÍ # # TCP ¥»¥Ã¥·¥ç¥ó¤Ë¤ª¤¤¤Æ 2 »þ´Ö¤Î¥¿¥¤¥à¥¢¥¦¥ÈÃÍ¤ò¡¢ # TCP/IP "FIN" ¥Ñ¥±¥Ã¥È¤ò¼õ¿®¸å¤Î¥È¥é¥Õ¥£¥Ã¥¯¤Ë¤ª¤¤¤Æ 10 ÉÃ¤Î¥¿¥¤¥à¥¢¥¦¥È # ÃÍ¤ò¡¢ # UDP ¥È¥é¥Õ¥£¥Ã¥¯¤Ë¤ª¤¤¤Æ 160 ÉÃ¤Î¥¿¥¤¥à¥¢¥¦¥ÈÃÍ(MASQ ¤µ¤ì¤¿ ICQ ¥æ¡¼¥¶ # ¤Î°Ù¤Ë½ÅÍ×¤Ç¤¹) ¤òÀßÄê¤·¤Þ¤¹¡£ # /sbin/ipfwadm -M -s 7200 10 160 # DHCP - ADSL ¤ä ¥±¡¼¥Ö¥ë¥â¥Ç¥à¤Î¥æ¡¼¥¶¤Î¤è¤¦¤Ê¡¢DHCP °¿¤Ï BOOTP ¤Î # ¤¤¤º¤ì¤«¤«¤é¡¢³°Éô IP ¥¢¥É¥ì¥¹¤ò¼èÆÀ¤¹¤ë¿Í¤Ï¡¢¤³¤Î¸å¤Ëµ½Ò¤µ¤ì¤ë # ipchains ¤Î deny ¥³¥Þ¥ó¥É¤ÎÁ°¤Ë¤³¤Î¹Ô¤òÉ¬Í×¤È¤·¤Þ¤¹¡£ # "bootp_client_net_if_name" ¤Ë¤Ï DHCP/BOOTP ¥µ¡¼¥Ð¤¬¥¢¥É¥ì¥¹¤ò # ³ä¤êÅö¤Æ¤ë¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾¤Ë½ñ¤´¹¤¨¤Æ¤¯¤À¤µ¤¤¡£ # ¶²¤é¤¯ "eth0", "eth1" Åù¤Ë¤Ê¤ë¤³¤È¤Ç¤·¤ç¤¦¡£ # # ¤³¤ÎÎã¤Ïº£¤Î½ê¥³¥á¥ó¥È¥¢¥¦¥È¤·¤Æ¤¤¤Þ¤¹¡£ # # #/sbin/ipfwadm -I -a accept -S 0/0 67 -D 0/0 68 -W bootp_clients_net_if_name -P udp # Ã±½ã¤Ê IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°µÚ¤Ó¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ # # Ãí°Õ - °Ê²¼¤ÎÎã¤Ï 192.168.0.x ¤ÎÆâÉô LAN ¥¢¥É¥ì¥¹¤Ç 255.255.255.0 Ëô¤Ï # "24" ¥Ó¥Ã¥È¤Î¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯¤è¤ê¤Ê¤ë¥Í¥Ã¥È¥ï¡¼¥¯¤¬¡¢ eth0 # ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤òÄÌ¤¸¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ØÀÜÂ³¤µ¤ì¤ë¾ì¹ç¤òµ¤·¤Æ # ¤¤¤Þ¤¹¡£ # # ** ¤¢¤Ê¤¿¤ÎÆâÉô LAN ¤ÎÀßÄê¤Ë¹ç¤¦¤è¤¦¤Ë¡¢¥Í¥Ã¥È¥ï¡¼¥¯ÈÖ¹æ¡¢ # ** ¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯µÚ¤Ó¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾ # ** ¤òÊÑ¹¹¤·¤Æ¤¯¤À¤µ¤¤¡£ # /sbin/ipfwadm -F -p deny /sbin/ipfwadm -F -a m -W eth0 -S 192.168.0.0/24 -D 0.0.0.0/0 </verb> </tscreen>  °ìÃ¶ /etc/rc.d/rc.firewall ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÊÔ½¸¤·½ª¤¨¤¿¤é¡¢¼Â¹Ô²ÄÇ½¤Ë ¤¹¤ë¤è¤¦¤Ë <tt>chmod 700 /etc/rc.d/rc.firewall</tt> ¤òÆþÎÏ¤·¡¢¼Â¹Ô¤·¤Æ ¤¯¤À¤µ¤¤¡£  ¤µ¤Æ¡¢¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Î½àÈ÷¤¬À°¤¤¤Þ¤·¤¿¡£ ¤³¤ì¤ò¥ê¥Ö¡¼¥È¸å¤Ë¼Â¹Ô¤µ¤»¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¼Â¹Ô¤Ë¤Ï¡¢Ëè²ó¼ê¤Ç¹Ô¤¦ÊýË¡ (¶ìÄË¤Ç¤¹) ¤«¡¢¥Ö¡¼¥È¥¹¥¯¥ê¥×¥È¤ËÄÉ²Ã¤¹¤ëÊýË¡ ¤¬¤¢¤ê¤Þ¤¹¡£ °Ê²¼¤Ë 2¤Ä¤ÎÊýË¡¤òµ¤·¤Æ¤ª¤¤Þ¤·¤¿ -  <itemize>Redhat µÚ¤Ó Redhat ¤«¤éÇÉÀ¸¤·¤¿¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó - <itemize> <item>µ¯Æ°¥¹¥¯¥ê¥×¥È¤Î¥í¡¼¥É¤Ë´Ø¤·¡¢ Redhat ¤Ë¤Ï 2¤Ä¤ÎÊýË¡¤¬¤¢¤ê¤Þ¤¹ - /etc/rc.d/rc.local °¿¤Ï /etc/rc.d/init.d/ ¤ÎÃæ¤Ë¤¢¤ë init ¥¹¥¯¥ê¥×¥È¤Ç¤¹¡£ Á°¼Ô¤ÎÊýË¡¤¬ºÇ¤â´ÊÃ±¤Ç¤¹¡£¤ä¤ë¤Ù¤¤³¤È¤Ï°Ê²¼¤Î¹Ô¤ò /etc/rc.d/rc.local ¥Õ¥¡¥¤¥ë¤ÎºÇ¸å¤ËÄÉ²Ã¤¹¤ë¤³¤È¤Ç¤¹ - <itemize> echo "Loading the rc.firewall ruleset.." /etc/rc.d/rc.firewall </itemize> </itemize> ¤³¤Î¼êË¡¤ÎÌäÂêÅÀ¤Ï¡¢¶¯¸Ç¤Ê¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÆ°ºî¤µ¤»¤è¤¦¤È ¤¹¤ëºÝ¤Ë¡¢¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Ï¥Ö¡¼¥È½ªÎ»¤Ë»ê¤ë¤Þ¤Ç¼Â¹Ô¤µ¤ì¤Ê¤¤¡¢¤È¤¤¤¦ÅÀ¤Ë ¤¢¤ê¤Þ¤¹¡£ ¹¥¤Þ¤·¤¤¼êË¡¤È¤·¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥µ¥Ö¥·¥¹¥Æ¥à¤ÎÀßÄê¤¬¥í¡¼¥É¤µ¤ì¤¿Ä¾¸å¤Ë¡¢ ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤ÎÀßÄê¤¬¥í¡¼¥É¤µ¤ì¤ë¤è¤¦¤Ë¤¹¤ë¤³¤È¤Ç¤¹¡£ º£¤Î½ê¡¢¤³¤Î HOWTO ¤Ï /etc/rc.d/rc.local ¤ÎÀßÄê¤Î¤ß¤ò°·¤Ã¤Æ¤¤¤Þ¤¹¡£ ¤è¤ê¶¯¸Ç¤Ê¥·¥¹¥Æ¥à¤ò¤ªË¾¤ß¤Ê¤é¡¢¤³¤Î HOWTO ¤ÎºÇ¸å¤Î¾Ï¤Ë¥ê¥ó¥¯¤¬¤¢¤ë TrinityOS ¤Î10¾Ï¤ò»²¾È¤¹¤ë¤³¤È¤ò¤ªÁ¦¤á¤·¤Þ¤¹¡£ </itemize> <itemize>Slackware:  <itemize> <item>µ¯Æ°¥¹¥¯¥ê¥×¥È¤Î¥í¡¼¥É¤Ë´Ø¤·¡¢ Slackware ¤Ë¤Ï 2¤Ä¤ÎÊýË¡¤¬¤¢¤ê¤Þ¤¹ - /etc/rc.d/rc.local °¿¤Ï /etc/rc.d/rc.inet2 ¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤¹¤ë¤³¤È¤Ç¤¹¡£ Á°¼Ô¤ÎÊýË¡¤¬ºÇ¤â´ÊÃ±¤Ç¤¹¡£¤ä¤ë¤Ù¤¤³¤È¤Ï°Ê²¼¤Î¹Ô¤ò /etc/rc.d/rc.local ¥Õ¥¡¥¤¥ë¤ÎºÇ¸å¤ËÄÉ²Ã¤¹¤ë¤³¤È¤Ç¤¹ - <itemize> echo "Loading the rc.firewall ruleset.." /etc/rc.d/rc.firewall </itemize> ¤³¤Î¼êË¡¤ÎÌäÂêÅÀ¤Ï¡¢¶¯¸Ç¤Ê¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÆ°ºî¤µ¤»¤è¤¦¤È ¤¹¤ëºÝ¤Ë¡¢¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Ï¥Ö¡¼¥È½ªÎ»¤Ë»ê¤ë¤Þ¤Ç¼Â¹Ô¤µ¤ì¤Ê¤¤¡¢¤È¤¤¤¦ÅÀ¤Ë ¤¢¤ê¤Þ¤¹¡£ ¹¥¤Þ¤·¤¤¼êË¡¤È¤·¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥µ¥Ö¥·¥¹¥Æ¥à¤ÎÀßÄê¤¬¥í¡¼¥É¤µ¤ì¤¿Ä¾¸å¤Ë¡¢ ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤ÎÀßÄê¤¬¥í¡¼¥É¤µ¤ì¤ë¤è¤¦¤Ë¤¹¤ë¤³¤È¤Ç¤¹¡£ º£¤Î½ê¡¢¤³¤Î HOWTO ¤Ï /etc/rc.d/rc.local ¤ÎÀßÄê¤Î¤ß¤ò°·¤Ã¤Æ¤¤¤Þ¤¹¡£ ¤è¤ê¶¯¸Ç¤Ê¥·¥¹¥Æ¥à¤ò¤ªË¾¤ß¤Ê¤é¡¢¤³¤Î HOWTO ¤ÎºÇ¸å¤Î¾Ï¤Ë¥ê¥ó¥¯¤¬¤¢¤ë TrinityOS ¤Î10¾Ï¤ò»²¾È¤¹¤ë¤³¤È¤ò¤ªÁ¦¤á¤·¤Þ¤¹¡£ </itemize> </itemize>  <bf>¾å½Ò¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÊÑ¹¹¤·¤¿¤¤¥æ¡¼¥¶¤Ø¤ÎÃí°Õ - </bf>  ´°Á´¤Ê TCP/IP ¥Í¥Ã¥È¥ï¡¼¥¯¤ò¼Â¸½¤¹¤ë¾å½Ò¤ÎÊýË¡¤ÎÂå¤ï¤ê¤Ë¡¢*Ã±ÂÎ¤Î¥Þ¥·¥ó ¤À¤±*¤Î IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¼Â¸½¤·¤¿¤¤¤È»×¤¦Êý¤â¤¤¤ë¤³¤È¤Ç¤·¤ç¤¦¡£ Îã¤¨¤Ð¡¢»ä¤Ï 192.168.0.2 ¤È 192.168.0.8 ¤Î¥Û¥¹¥È¤À¤±¤ò¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø ÀÜÂ³¤µ¤»¤¿¤¤¤È¤·¤Þ¤¹¡£¤³¤Î»þÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¾å¤ËÂ¾¤Î¥Þ¥·¥ó¤ÏÂ¸ºß¤·¤Þ¤»¤ó¡£ »ä¤Ï (¾å½Ò¤Î) "Ã±½ã¤Ê IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°µÚ¤Ó¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò¼Â¸½¤¹¤ë" ¤Î¾Ï¤Î¡¢ /etc/rc.d/rc.firewall ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ò¡¢°Ê²¼¤Î¤è¤¦¤Ë½ñ¤´¹¤¨¤Þ¤¹¡£  <tscreen> <verb> #!/bin/sh # # Ã±½ã¤Ê IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°µÚ¤Ó¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤òÍ¸ú¤Ë¤·¤Þ¤¹¡£ # # Ãí°Õ - °Ê²¼¤ÎÎã¤Ï 192.168.0.x ¤ÎÆâÉô LAN ¥¢¥É¥ì¥¹¤Ç 255.255.255.0 Ëô¤Ï # "24" ¥Ó¥Ã¥È¤Î¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯¤è¤ê¤Ê¤ë¥Í¥Ã¥È¥ï¡¼¥¯¤¬¡¢ eth0 # ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤òÄÌ¤¸¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ØÀÜÂ³¤µ¤ì¤ë¾ì¹ç¤òµ¤·¤Æ # ¤¤¤Þ¤¹¡£ # # ** ¤¢¤Ê¤¿¤ÎÆâÉô LAN ¤ÎÀßÄê¤Ë¹ç¤¦¤è¤¦¤Ë¡¢¥Í¥Ã¥È¥ï¡¼¥¯ÈÖ¹æ¡¢ # ** ¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯µÚ¤Ó¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾ # ** ¤òÊÑ¹¹¤·¤Æ¤¯¤À¤µ¤¤¡£ # /sbin/ipfwadm -F -p deny /sbin/ipfwadm -F -a m -W eth0 -S 192.168.0.2/32 -D 0.0.0.0/0 /sbin/ipfwadm -F -a m -W eth0 -S 192.168.0.8/32 -D 0.0.0.0/0 </verb> </tscreen>  <bf>¤è¤¯¤¢¤ë´Ö°ã¤¤ - </bf>  ½é´üÃÊ³¬¤Î IP Masq ¥æ¡¼¥¶¤¬ÈÈ¤·¤¬¤Á¤Ê¤è¤¯¤¢¤ë´Ö°ã¤¤¤È¤·¤Æ¡¢ °Ê²¼¤Î¤è¤¦¤Ê¥³¥Þ¥ó¥É¤¬¤¢¤ê¤Þ¤¹ - <verb> ipfwadm -F -p masquerade </verb>  ·è¤·¤Æ¡¢¥Ç¥Õ¥©¥ë¥È¥Ý¥ê¥·¡¼¤ò¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ë¤·¤Æ¤Ï<bf>¤¤¤±¤Þ¤»¤ó</bf>¡£ ¤µ¤â¤Ê¤¯¤Ð¡¢·ÐÏ©¥Æ¡¼¥Ö¥ë¤òÁàºî¤Ç¤¤ëÃ¯¤«¤¬¤¢¤Ê¤¿¤Î¥²¡¼¥È¥¦¥§¥¤¥Þ¥·¥ó¤Ë ·ê¤ò³«¤±¡¢¼«¿È¤Î¿È¸µ¤ò¥Þ¥¹¥«¥ì¡¼¥É¤·¤Æ¤·¤Þ¤¦¤«¤âÃÎ¤ì¤Ê¤¤¤«¤é¤Ç¤¹!  ·«¤êÊÖ¤·¤Þ¤¹¡¢¤³¤ì¤é¤Î¹Ô¤Ï <tt>/etc/rc.d/rc.firewall</tt> ¥Õ¥¡¥¤¥ë¤«¡¢ ¤¢¤Ê¤¿¤¬ÁªÂò¤¹¤ëÂ¾¤Î rc ¥Õ¥¡¥¤¥ë¤Î¤¦¤Á¤Î°ì¤Ä¤ËÄÉ²Ã¤Ç¤¤ë¤«¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÉ¬Í×¤È¤¹¤ëÅÙËè¤Ë¼êºî¶È¤Ç¼Â¹Ô¤Ç¤¤Þ¤¹¡£  ¤è¤ê¶¯¸Ç¤Ê IPCHAINS ¤È IPFWADM ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ÎÎã¤Î¾ÜºÙ¤Ê¼ê°ú¤Ë´Ø¤·¤Æ¤Ï¡¢ <ref id="Strong-IPCHAINS-Rulesets" name="¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> ¤È <ref id="Strong-IPFWADM-Rulesets" name="¶¯¤¤ IPFWADM ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> ¤Î ¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£     <sect> ¥Þ¥¹¥«¥ì¡¼¥ÉÀÜÂ³¤¹¤ëÂ¾¤ÎÆâÉô¥Þ¥·¥ó¤ÎÀßÄê  <label id="Configuring-clients"> ¥Þ¥¹¥«¥ì¡¼¥ÉÀÜÂ³¤¹¤ë³ÆÆâÉô¥Þ¥·¥ó¤Ç¤Ï¡¢Å¬ÀÚ¤Ê IP ¥¢¥É¥ì¥¹¤òÀßÄê¤¹¤ë¤À¤±¤Ç¤Ê¤¯¡¢Linux ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤È DNS ¥µ¡¼¥Ð¤Î¥²¡¼¥È¥¦¥§¥¤ IP ¥¢¥É¥ì¥¹¤òÀßÄê¤¹¤ëÉ¬Í×¤â¤¢¤ê¤Þ¤¹¡£°ìÈÌÅª¤Ë¸À¤Ã¤Æ¡¢¤½¤ì¤Û¤ÉÆñ¤·¤¤ºî¶È¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó¡£Linux ¥Û¥¹¥È¤Î¥¢¥É¥ì¥¹(ÄÌ¾ï¤Ï¡¢192.168.0.1 ¤È¤¤¤¦¥¢¥É¥ì¥¹)¤ò¥²¡¼¥È¥¦¥§¥¤¥¢¥É¥ì¥¹¤È¤·¤ÆÆþÎÏ¤¹¤ë¤À¤±¤Ç¤¹¡£  DNS(¥É¥á¥¤¥ó¥Í¡¼¥à¥µ¡¼¥Ó¥¹)¤Ë¤Ï¡¢ÍøÍÑ¤Ç¤¤ë DNS ¥µ¡¼¥Ð¤Ç¤¢¤ì¤Ð¡¢¤É¤Î DNS ¥µ¡¼¥Ð¤ò»ØÄê¤·¤Æ¤â¤«¤Þ¤¤¤Þ¤»¤ó¡£Linux ¥µ¡¼¥Ð¤Î»ÈÍÑ¤·¤Æ¤¤¤ë¤â¤Î¤ÈÆ±¤¸ DNS ¥µ¡¼¥Ð¤ò»ØÄê¤¹¤ë¤Î¤¬Ê¬¤«¤ê¤ä¤¹¤¤¤Ç¤·¤ç¤¦¡£¤³¤Î¤È¤¡¢Ç¤°Õ¤Î¡Ö¥É¥á¥¤¥ó¥µ¡¼¥Á¡×¥µ¥Õ¥£¥Ã¥¯¥¹¤òÄÉ²Ã¤¹¤ë¤³¤È¤â¤Ç¤¤Þ¤¹¡£  ÆâÉô¥Þ¥¹¥«¥ì¡¼¥É¥Þ¥·¥ó¤ÎÀßÄê¤ò½ª¤¨¤¿¤é¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥µ¡¼¥Ó¥¹¤òµ¯Æ°¤·Ä¾¤¹¤«¡¢¥·¥¹¥Æ¥à¤ò¥ê¥Ö¡¼¥È¤·¤Æ¤¯¤À¤µ¤¤¡£  ¤³¤³¤Ç¤Ï¡¢Linux ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤Î¥¢¥É¥ì¥¹¤È¤·¤Æ 192.168.0.1 ¤È¤¤¤¦¥¯¥é¥¹ C ¥Í¥Ã¥È¥ï¡¼¥¯¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤¹¤ë¤â¤Î¤È¤·¤ÆÀßÄê¤Î¼ê½ç¤òÀâÌÀ¤·¤Þ¤¹¡£192.168.0.0 ¤È 192.168.0.255 ¤Ï¡¢LAN ¤ËÍ½Ìó¤µ¤ì¤Æ¤¤¤ë TCP/IP ¥¢¥É¥ì¥¹¤Ç¤¹¡£  °Ê²¼¤Î¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤Ï¡¢ÆâÉô¥Þ¥¹¥«¥ì¡¼¥É¥Þ¥·¥ó¤È¤·¤Æ»ÈÍÑ¼ÂÀÓ¤Î ¤¢¤ë¤â¤Î¤Ç¤¹¡£ ¤³¤ì¤é¤Ï¥Þ¥¹¥«¥ì¡¼¥É¤ËÂÐ±þ¤·¤¿ OS ¤Î°ìÎã¤Ë¤¹¤®¤Þ¤»¤ó¡£  <itemize> <item>Apple Macintosh OS(MacTCP ¤Þ¤¿¤Ï Open Transport µ¡Ç½¤ÎÆ°ºî¤·¤Æ¤¤¤ë¤â¤Î) <item>Commodore Amiga(AmiTCP ¤Þ¤¿¤Ï AS225 ¥¹¥¿¥Ã¥¯¤ÎÆ°ºî¤·¤Æ¤¤¤ë¤â¤Î) <item>Digital VAX Stations 3520 µÚ¤Ó 3100 ¤Ç²ÔÆ°¤·¤Æ¤¤¤ë UCX(VMS ÍÑ¤Î TCP/IP ¥¹¥¿¥Ã¥¯¤¬¤¢¤ë¤â¤Î) <item>Digital Alpha/AXP ¤Ç²ÔÆ°¤¹¤ë Linux/Redhat <item>RS/6000 ¤Ç²ÔÆ°¤¹¤ë IBM AIX <item>IBM OS/2(Warp v3 ¤ò´Þ¤à) <item>AS/400 ¤Ç²ÔÆ°¤¹¤ë IBM OS400 <item>Linux 1.2.x¡¢1.3.x¡¢2.0.x¡¢2.1.x¡¢2.2.x <item>Microsoft DOS(NCSA Telnet ¥Ñ¥Ã¥±¡¼¥¸¤ò»ÈÍÑ¤·¡¢DOS Trumpet ¤¬°ìÉôµ¡Ç½¤·¤Æ¤¤¤ë¤â¤Î) <item>Microsoft Windows 3.1(Netmanage Chameleon ¥Ñ¥Ã¥±¡¼¥¸¤ò»ÈÍÑ¤·¤Æ¤¤¤ë¤â¤Î) <item>Microsoft Windows For Workgroup 3.11(TCP/IP ¥Ñ¥Ã¥±¡¼¥¸¤ÎÆ°ºî¤·¤Æ¤¤¤ë¤â¤Î) <item>Microsoft Windows 95¡¢OSR2¡¢98¡¢98SE <item>Microsoft Windows NT 3.51¡¢4.0¡¢2000(Workstation µÚ¤Ó Server) <item>Novell Netware 4.01 Server(TCP/IP ¥µ¡¼¥Ó¥¹¤ÎÆ°ºî¤·¤Æ¤¤¤ë¤â¤Î) <item>SCO Openserver(v3.2.4.2 µÚ¤Ó 5) <item>Sun Solaris 2.51¡¢2.6¡¢7 </itemize> ¡ÚÌõÃí: Microsoft Windows for Workgroup 3.11 ¤Ï¡¢ÆüËÜ¤Ç¤ÏÈ¯Çä ¤µ¤ì¤Æ¤¤¤Þ¤»¤ó¡£¡Û   <sect1> Microsoft Windows 95 ¤Ç¤ÎÀßÄê  <enum> <item>¤¢¤é¤«¤¸¤á¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ä¥¢¥À¥×¥¿¥É¥é¥¤¥Ð¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤ª¤¤Þ¤¹¡£¥¤¥ó¥¹¥È¡¼¥ë¤Î¼ê½ç¤Ë¤Ä¤¤¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÎÀâÌÀ½ñ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  'Network'. - - - - - - - - End of Original - - - - - - - - - --> <item>¡Ö¥³¥ó¥È¥í¡¼¥ë¥Ñ¥Í¥ë¡×¤«¤é¡Ö¥Í¥Ã¥È¥ï¡¼¥¯¡×¤òÁªÂò¤·¤Þ¤¹¡£  Protocol --> Manufacture: Microsoft --> Protocol: 'TCP/IP protocol' if you don't already have it. - - - - - - - - End of Original - - - - - - - - - --> <item>¡ÖÄÉ²Ã¡×¢ª¡Ö¥×¥í¥È¥³¥ë¡×¢ª¡ÖÀ½Â¤¸µ: Microsoft(Manufacture: Microsoft)¡×¢ª¡Ö¥×¥í¥È¥³¥ë: TCP/IP ¥×¥í¥È¥³¥ë¡×¤òÁªÂò¤·¤Þ¤¹(¤¹¤Ç¤Ë TCP/IP ¥×¥í¥È¥³¥ë¤¬¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤Æ¤¤¤ì¤Ð¡¢¤³¤Îºî¶È¤ÏÉÔÍ×¤Ç¤¹)¡£  <item>Windows95 ¤Î¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤Î TCP/IP ¹àÌÜ¤òÁªÂò¤·¤¿¾õÂÖ¤Ç¡Ö¥×¥í¥Ñ¥Æ¥£¡×¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£¡ÖIP ¥¢¥É¥ì¥¹¡×¥¿¥Ö¤ò³«¤¤¤Æ¡¢IP ¥¢¥É¥ì¥¹¤ò 192.168.0.x(1 < x < 255)¤ËÀßÄê¤·¡¢¡Ö¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯¡×¤ò 255.255.255.0 ¤ËÀßÄê¤·¤Þ¤¹¡£  <item>¼¡¤Ë¡¢¡Ö¥²¡¼¥È¥¦¥§¥¤¡×¥¿¥Ö¤ò³«¤¤¤Æ¡¢¡Ö¥²¡¼¥È¥¦¥§¥¤¡×¤Ë 192.168.0.1 ¤ÈÆþÎÏ¤·¡¢¡ÖÄÉ²Ã¡×¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£  <item>¡ÖDNS ¤ÎÀßÄê¡×¥¿¥Ö¤Ç¡¢¼«Ê¬¤Î¥Þ¥·¥ó¤ÎÌ¾Á°¤¬¼¨¤µ¤ì¤Æ¤¤¤ë ¤³¤È¤ò³ÎÇ§¤·¤Æ¤«¤é¡¢¸ø¼°¤Ê¥É¥á¥¤¥óÌ¾¤òÆþÎÏ¤·¤Þ¤¹¡£ ¼«Á°¤Î¥É¥á¥¤¥ó¤¬¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢ÍøÍÑ¤·¤Æ¤¤¤ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥×¥í¥Ð¥¤¥À (ISP) ¤Î¥É¥á¥¤¥óÌ¾¤òÆþÎÏ¤·¤Þ¤¹¡£ ¼¡¤Ë¡¢ Linux ¥Û¥¹¥È¤Î»ÈÍÑ¤·¤Æ¤¤¤ë DNS ¥µ¡¼¥Ð (ÄÌ¾ï¤Ï¡¢ <tt>/etc/resolv.conf</tt> ¤Ç»ØÄê¤µ¤ì¤Æ¤¤¤ë DNS ¥µ¡¼¥Ð) ¤ò¤¹¤Ù¤ÆÄÉ²Ã¤·¤Þ¤¹¡£ ¤³¤¦¤·¤¿ DNS ¥µ¡¼¥Ð¤Ë¤Ï¡¢¤¢¤Ê¤¿¤Î Linux ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¾å¤Ë¤¢¤ë ÆÈ¼«¤Î¥¥ã¥Ã¥·¥ó¥°¥Í¡¼¥à¥µ¡¼¥Ð¤äÀµ¼°¤Ê DNS ¥µ¡¼¥Ð¤ò»ÈÍÑ¤¹¤ë¤³¤È¤â ¤Ç¤¤Þ¤¹¤¬¡¢ ISP ¤Î¥µ¡¼¥Ð¤ò»ØÄê¤¹¤ë¤Î¤¬ÉáÄÌ¤Ç¤¹¡£ ¤³¤Î¤È¤¡¢¥É¥á¥¤¥ó¥µ¡¼¥Á¥µ¥Õ¥£¥Ã¥¯¥¹¤òÉÕ¤±¤ë¤³¤È¤â¤Ç¤¤Þ¤¹¡£  <item>¤è¤¯Ê¬¤«¤é¤Ê¤±¤ì¤Ð¡¢¤Û¤«¤ÎÀßÄê¤Ï¤¹¤Ù¤Æ¤½¤Î¤Þ¤Þ¤Ë¤·¤Æ¤ª¤¤Þ¤¹¡£  <item>¤¹¤Ù¤Æ¤Î¥À¥¤¥¢¥í¥°¥Ü¥Ã¥¯¥¹¤Ç¡ÖOK¡×¤ò¥¯¥ê¥Ã¥¯¤·¤Æ¡¢¥·¥¹¥Æ¥à¤òºÆµ¯Æ°¤·¤Þ¤¹¡£  <item>Linux ¥Þ¥·¥ó¤Ë <tt/ping/ ¤òÂÇ¤Á¡¢¥Í¥Ã¥È¥ï¡¼¥¯ÀÜÂ³¤ò¥Æ¥¹¥È¤·¤Þ¤¹¡£ ¡Ö¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô¡×¤Ç¡¢°Ê²¼¤Î¤è¤¦¤ËÆþÎÏ¤·¤Æ¤¯¤À¤µ¤¤ - <tt>ping 192.168.0.1</tt> &nl;(¤Þ¤À LAN ¤ÎÀÜÂ³¤ò¥Æ¥¹¥È¤·¤Æ¤¤¤ë¤À¤±¤Ê¤Î¤Ç¡¢LAN ¤Î³°Éô¤Ø <tt/ping/ ¤ÏÂÇ¤Æ¤Þ¤»¤ó)¡£ ping ¤Ë¡Ö±þÅú¡×¤¬¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀßÄê¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£  <item>C:\Windows ¥Ç¥£¥ì¥¯¥È¥ê¤Ë <tt/HOSTS/ ¤È¤¤¤¦¥Õ¥¡¥¤¥ë¤òºîÀ®¤·¤Æ¤ª¤±¤Ð¡¢DNS ¥µ¡¼¥Ð¤ò»ÈÍÑ¤·¤Ê¤¯¤Æ¤â³Æ LAN ¥Þ¥·¥ó¤Î¡Ö¥Û¥¹¥ÈÌ¾¡×¤Ë ping ¤¬ÄÌ¤ë¤è¤¦¤Ê¤ê¤Þ¤¹¡£C:\windows ¥Ç¥£¥ì¥¯¥È¥ê¤Ë¤Ï <tt>HOSTS.SAM</tt> ¤È¤¤¤¦¥µ¥ó¥×¥ë¥Õ¥¡¥¤¥ë¤¬¼ý¤á¤é¤ì¤Æ¤¤¤Þ¤¹¡£</enum>   <sect1> Windows NT ¤Ç¤ÎÀßÄê ¡ÚÌõÃí: ¤³¤ì¤Ï NT 3.x ¤ÎÀßÄêÊýË¡¤Ç¡¢UI (¥À¥¤¥ä¥í¥°¤ä¥¿¥Ö)¤ÎÌõ¤â NT 3.x ¤Ë´ð¤Å¤¯¤â¤Î¤Ç¤¹¡£NT4.0 ¤ä Windows 2000 ¤Ê¤É¡¢¤½¤ÎÂ¾¤Î Windows NT ·Ï OS ¤ÎÀßÄê¤â³µÇ°¤È¤·¤Æ¤ÏÆ±ÍÍ¤Ç¤¹¤¬¡¢¼ê½ç¤Î¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤ÏOS ¤Î ¥Þ¥Ë¥å¥¢¥ë¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£¡Û <enum>  <item>¤¢¤é¤«¤¸¤á¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ä¥¢¥À¥×¥¿¥É¥é¥¤¥Ð¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤ª¤¤Þ¤¹¡£¥¤¥ó¥¹¥È¡¼¥ë¤Î¼ê½ç¤Ë¤Ä¤¤¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÎÀâÌÀ½ñ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  'Network' --> Protocols - - - - - - - - End of Original - - - - - - - - - --> <item>¡Ö¥³¥ó¥È¥í¡¼¥ë¥Ñ¥Í¥ë¡×¢ª¡Ö¥Í¥Ã¥È¥ï¡¼¥¯¡×¢ª¡Ö¥×¥í¥È¥³¥ë¡×¤òÁªÂò¤·¤Þ¤¹¡£  <item>TCP/IP ¥µ¡¼¥Ó¥¹¤ò¤Þ¤À¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤¤¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢¡Ö¥½¥Õ¥È¥¦¥§¥¢¤ÎÄÉ²Ã¡×¥á¥Ë¥å¡¼¤«¤é TCP/IP ¥×¥í¥È¥³¥ë¤È´ØÏ¢¥³¥ó¥Ý¡¼¥Í¥ó¥È¤òÄÉ²Ã¤·¤Þ¤¹¡£  <item>¡Ö¥Í¥Ã¥È¥ï¡¼¥¯¥½¥Õ¥È¥¦¥§¥¢¤È¥¢¥À¥×¥¿¥«¡¼¥É(Network Software and Adapter Cards)¡×¤Ç¡ÖÁÈ¤ß¹þ¤Þ¤ì¤Æ¤¤¤ë¥Í¥Ã¥È¥ï¡¼¥¯¥½¥Õ¥È¥¦¥§¥¢(Installed Network Software)¡×¤È¤¤¤¦ÁªÂò¥Ü¥Ã¥¯¥¹¤«¤é¡ÖTCP/IP ¥×¥í¥È¥³¥ë(TCP/IP Protocol)¡×¤òÁªÂò¤·¤Þ¤¹¡£  <item>¡ÖTCP/IP ¤Î¹½À®¡×¤Ç¡¢Å¬ÀÚ¤Ê¥¢¥À¥×¥¿(¤¿¤È¤¨¤Ð¡¢<tt>[1]Novell NE2000 Adapter</tt>)¤òÁªÂò¤·¤Þ¤¹¡£IP ¥¢¥É¥ì¥¹¤ò 192.168.0.x(1 < x < 255)¤ËÀßÄê¤·¡¢¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯¤ò 255.255.255.0 ¤Ë¡¢¥Ç¥Õ¥©¥ë¥È¥²¡¼¥È¥¦¥§¥¤¤ò 192.168.0.1 ¤ËÀßÄê¤·¤Þ¤¹¡£  <item>(³Æ¥ª¥×¥·¥ç¥ó¤Îµ¡Ç½¤òÀµ³Î¤ËÍý²ò¤·¤Æ¤¤¤Ê¤¤¸Â¤ê)°Ê²¼¤Î¥ª¥×¥·¥ç¥ó¤Ï Í¸ú¤Ë¤·¤Ê¤¤¤Ç¤¯¤À¤µ¤¤¡£ <itemize>  <item>¡ÖDHCP ¼«Æ°¹½À®¤òÍ¸ú¤Ë¤¹¤ë¡× - ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¤Ç DHCP ¥µ¡¼¥Ð¤ò»ÈÍÑ¤·¤Æ¤¤¤Ê¤¤¸Â¤êÌµ¸ú¤Ë¤·¤Þ¤¹¡£  <item>1¤Ä¤Þ¤¿¤ÏÊ£¿ô¤Î WINS ¥µ¡¼¥Ð¤ò¥»¥Ã¥È¥¢¥Ã¥×¤·¤Æ¤¤¤Ê¤¤¸Â¤ê¡¢ ¡ÖWINS ¥µ¡¼¥Ð¡×¤ÎÆþÎÏÍó¤Ë¤Ï²¿¤âÆþÎÏ¤·¤Ê¤¤¤Æ¤¯¤À¤µ¤¤¡£  <item>¡ÖIP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤òÍ¸ú¤Ë¤¹¤ë¡× - Windows NT ¥Þ¥·¥ó¤Ç¥ë¡¼¥Æ¥£¥ó¥°¤ò¹Ô¤¦¤Î¤Ç¤Ê¤¯¡¢ËÜÅö¤Ë¡¢ -ËÜÅö¤Ë- Àµ³Î¤Ë²¿¤ò¤¹¤ë¤Î¤«¤òÃÎ¤é¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢Í¸ú¤Ë¤·¤Ê¤¤¤Ç ¤¯¤À¤µ¤¤¡£ </itemize>  <item>¡ÖDNS¡×¤ò¥¯¥ê¥Ã¥¯¤·¡¢Linux ¥Û¥¹¥È¤Î»ÈÍÑ¤·¤Æ¤¤¤ë DNS ¥µ¡¼¥Ð¤Î¥¢¥É¥ì¥¹¤òÆþÎÏ¤·¤Þ¤¹(¤³¤Î¥¢¥É¥ì¥¹¤Ï¡¢ÄÌ¾ï¡¢/etc/resolv.conf ¤Ë¤¢¤ê¤Þ¤¹)¡£ÆþÎÏ¤ò½ª¤¨¤¿¤é¡ÖOK¡×¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£  <item>¡Ö¾ÜºÙ¡×¤ò¥¯¥ê¥Ã¥¯¤·¡¢¡ÖWindows Ì¾Á°²ò·è¤Ë DNS ¤ò»ÈÍÑ¤¹¤ë¡×¤È¡ÖLMHOSTS ¤Î»²¾È¤ò¹Ô¤¦¡×¤È¤¤¤¦¥ª¥×¥·¥ç¥ó¤Ë¥Á¥§¥Ã¥¯¤¬Æþ¤Ã¤Æ¤¤¤Ê¤¤¤³¤È¤ò³Î¤«¤á¤Þ¤¹¡£¤è¤¯Ê¬¤«¤é¤Ê¤±¤ì¤Ð¡¢¤³¤ì¤é¤Î¥ª¥×¥·¥ç¥ó¤ÏÌµ¸ú¤Ê¤Þ¤Þ¤Ë¤·¤Æ¤ª¤¤Þ¤¹¡£LMHOSTS ¥Õ¥¡¥¤¥ë¤ò»ÈÍÑ¤¹¤ë¾ì¹ç¡¢¤³¤Î¥Õ¥¡¥¤¥ë¤Ï C:\winnt\system32\drivers\etc ¤ËÃÖ¤«¤ì¤Þ¤¹¡£  <item>¤¹¤Ù¤Æ¤Î¥À¥¤¥¢¥í¥°¥Ü¥Ã¥¯¥¹¤Ë¡ÖOK¡×¤ÈÅú¤¨¤Æ¡¢¥·¥¹¥Æ¥à¤òºÆµ¯Æ°¤µ¤»¤Þ¤¹¡£  <item>Linux ¥Þ¥·¥ó¤Ë <tt/ping/ ¤òÂÇ¤Ã¤Æ¥Í¥Ã¥È¥ï¡¼¥¯ÀÜÂ³¤ò¥Æ¥¹¥È¤·¤Þ¤¹¡£ ¡Ö¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô¡×¤Ç¡¢°Ê²¼¤Î¤è¤¦¤ËÆþÎÏ¤·¤Þ¤¹ - <tt>ping 192.168.0.1</tt> &nl;(¤Þ¤À LAN ¤ÎÀÜÂ³¤ò¥Æ¥¹¥È¤·¤Æ¤¤¤ë¤À¤±¤Ê¤Î¤Ç¡¢LAN ¤Î³°Éô¤Ø <tt>ping</tt> ¤ÏÂÇ¤Æ¤Þ¤»¤ó)¡£ ping ¤Ë¡Ö±þÅú¡×¤¬¤Ê¤¤¾ì¹ç¤Ë¤Ï¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀßÄê¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ </enum>    <sect1> Windows for Workgroup 3.11 ¤Ç¤ÎÀßÄê ¡ÚÌõÃí: Microsoft Windows for Workgroup 3.11 ¤Ï¡¢ÆüËÜ¤Ç¤ÏÈ¯Çä ¤µ¤ì¤Æ¤¤¤Þ¤»¤ó¡£¤·¤¿¤¬¤Ã¤Æ¡¢UI ÍÑ¸ì¤ËÀµµ¬¤ÎËÝÌõ¤ÏÂ¸ºß¤·¤Ê¤¤¤Î¤Ç¤¹¤¬¡¢ Â¾¤Î OS ¤Î UI É½µ¤Ë¹ç¤ï¤»¤Æ¡¢¡ÖÏÂÌõ (¸¶Ê¸)¡×¤È¤¤¤¦·Á¤Ë¤·¤Æ¤ª¤¤Þ¤¹¡£¡Û <enum>  <item>¤¢¤é¤«¤¸¤á¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ä¥¢¥À¥×¥¿¥É¥é¥¤¥Ð¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤ª¤¤Þ¤¹¡£¥¤¥ó¥¹¥È¡¼¥ë¤Î¼ê½ç¤Ë¤Ä¤¤¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÎÀâÌÀ½ñ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <item>TCP/IP 32b ¥Ñ¥Ã¥±¡¼¥¸¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤¤¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢¥¤¥ó¥¹¥È¡¼¥ë¤·¤Þ¤¹¡£  <item>¡Ö¥á¥¤¥ó(Main)¡×¢ª¡ÖWindows ¤ÎÀßÄê(Windows Setup)¡×¢ª¡Ö¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀßÄê(Network Setup)¡×¤È¿Ê¤ó¤Ç¡Ö¥É¥é¥¤¥Ð(Drivers)¡×¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£  <item>¡Ö¥Í¥Ã¥È¥ï¡¼¥¯¥É¥é¥¤¥Ð(Network Drivers)¡×¤Ç¡ÖMicrosoft TCP/IP-32 3.11b¡×¤òÁªÂò¤·¡¢¡ÖÀßÄê(Setup)¡×¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£  <item>¡ÖIP ¥¢¥É¥ì¥¹(IP Address)¡×¤ò 192.168.0.x(1 < x < 255)¤ËÀßÄê¤·¡¢¡Ö¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯(Subnet Mask)¡×¤ò 255.255.255.0 ¤Ë¡¢¡Ö¥Ç¥Õ¥©¥ë¥È¥²¡¼¥È¥¦¥§¥¤(Default Gateway)¡×¤ò 192.168.0.1 ¤ËÀßÄê¤·¤Þ¤¹¡£  <item>(³Æ¥ª¥×¥·¥ç¥ó¤Îµ¡Ç½¤òÀµ³Î¤ËÍý²ò¤·¤Æ¤¤¤Ê¤¤¸Â¤ê)°Ê²¼¤Î¥ª¥×¥·¥ç¥ó¤ÏÍ¸ú¤Ë¤·¤Ê¤¤¤Ç¤¯¤À¤µ¤¤¡£ <itemize>  <item>¡ÖDHCP ¼«Æ°¹½À®¤òÍ¸ú¤Ë¤¹¤ë(Automatic DHCP Configuration)¡× - ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¤Ç DHCP ¥µ¡¼¥Ð¤ò»ÈÍÑ¤·¤Æ¤¤¤Ê¤¤¸Â¤êÌµ¸ú¤Ë¤·¤Þ¤¹¡£  <item>£±¤Ä¤Þ¤¿¤ÏÊ£¿ô¤Î WINS ¥µ¡¼¥Ð¤ò¥»¥Ã¥È¥¢¥Ã¥×¤·¤Æ¤¤¤Ê¤¤¸Â¤ê¡¢¡ÖWINS ¥µ¡¼¥Ð(WINS Server)¡×¤ÎÆþÎÏ¥Õ¥£¡¼¥ë¥É¤Ë¤Ï²¿¤âÆþÎÏ¤·¤Ê¤¤¤Æ¤¯¤À¤µ¤¤¡£ </itemize>  <item>¡ÖDNS¡×¤ò¥¯¥ê¥Ã¥¯¤·¡¢Linux ¥Û¥¹¥È¤Î»ÈÍÑ¤·¤Æ¤¤¤ë DNS ¥µ¡¼¥Ð¤Î¥¢¥É¥ì¥¹¤òÆþÎÏ¤·¤Þ¤¹(¤³¤Î¥¢¥É¥ì¥¹¤Ï¡¢ÄÌ¾ï¡¢/etc/resolv.conf ¤Ë¤¢¤ê¤Þ¤¹)¡£ÆþÎÏ¤ò½ª¤¨¤¿¤é¡¢¡ÖOK¡×¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£  <item>¡Ö¾ÜºÙ(Advanced)¡×¤ò¥¯¥ê¥Ã¥¯¤·¤Æ¡¢c:\windows ¤Ë¤¢¤ë¡ÖWindows Ì¾Á°²ò·è¤Ë DNS ¤ò»ÈÍÑ¤¹¤ë(Enable DNS for Windows Name Resolution)¡×¤È¡ÖLMHOSTS ¤Î»²¾È¤ò¹Ô¤¦(Enable LMHOSTS lookup)¡×¤Ë¥Á¥§¥Ã¥¯¤òÆþ¤ì¤Þ¤¹¡£  <item>¤¹¤Ù¤Æ¤Î¥À¥¤¥¢¥í¥°¥Ü¥Ã¥¯¥¹¤Ë¡ÖOK¡×¤ÈÅú¤¨¤Æ¡¢¥·¥¹¥Æ¥à¤òºÆµ¯Æ°¤µ¤»¤Þ¤¹¡£  <item>Linux ¥Þ¥·¥ó¤Ë <tt/ping/ ¤òÂÇ¤Ã¤Æ¥Í¥Ã¥È¥ï¡¼¥¯ÀÜÂ³¤ò¥Æ¥¹¥È¤·¤Þ¤¹¡£ ¡Ö¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô(File/Run)¡×¤Ç¡¢°Ê²¼¤Î¤è¤¦¤ËÆþÎÏ¤·¤Þ¤¹ - <tt>ping 192.168.0.1</tt> &nl;(¤Þ¤À LAN ¤ÎÀÜÂ³¤ò¥Æ¥¹¥È¤·¤Æ¤¤¤ë¤À¤±¤Ê¤Î¤Ç¡¢LAN ¤Î³°Éô¤Ø <tt/ping/ ¤ÏÂÇ¤Æ¤Þ¤»¤ó)¡£ ping ¤Ë¡Ö±þÅú¡×¤¬¤Ê¤¤¾ì¹ç¤Ë¤Ï¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀßÄê¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ </enum>   <sect1> UNIX ·Ï¥·¥¹¥Æ¥à¤Ç¤ÎÀßÄê <enum>  <item>¤¢¤é¤«¤¸¤á¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¡¢Å¬ÀÚ¤Ê¥¢¥À¥×¥¿¥É¥é¥¤¥Ð¤òÁÈ¤ß¹þ¤ó¤Ç¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤·Ä¾¤·¤Æ¤ª¤¤Þ¤¹¡£ ¥¤¥ó¥¹¥È¡¼¥ë¤Î¼ê½ç¤Ë¤Ä¤¤¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÎÀâÌÀ½ñ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <item>net-tools ¥Ñ¥Ã¥±¡¼¥¸¤Î¤è¤¦¤Ê TCP/IP ¥Í¥Ã¥È¥ï¡¼¥¯µ¡Ç½¤ò ¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤ª¤¤Þ¤¹¡£  <item><em/¡ÖIPADDR¡×/¤ò 192.168.0.x¡Ê1 < x < 255¡Ë¤ËÀßÄê¤·¤¿¤Î¤Á¡¢<em/¡ÖNETMASK¡×/ ¤ò 255.255.255.0 ¤Ë¡¢<em/¡ÖGATEWAY¡×/¤ò 192.168.0.1 ¤Ë¡¢<em/¡ÖBROADCAST¡×/ ¤ò 192.168.0.255 ¤ËÀßÄê¤·¤Þ¤¹¡£  ¤¿¤È¤¨¤Ð¡¢Redhat Linux ¤Î¾ì¹ç¡¢<tt>/etc/sysconfig/network-scripts/ifcfg-eth0</tt> ¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤¹¤ë¤«¡¢¤Þ¤¿¤Ï¡Ö¥³¥ó¥È¥í¡¼¥ë¥Ñ¥Í¥ë¡×¤ò»ÈÍÑ¤¹¤ë¤³¤È¤Ë¤è¤Ã¤Æ¾åµ¤ÎÊÑ¹¹¤¬¹Ô¤¨¤Þ¤¹¡£¤½¤ÎÂ¾¤Î UNIX ¥·¥¹¥Æ¥à(SunOS¡¢BSDi¡¢Slackware Linux¡¢Solaris¡¢SuSe¡¢Debian ¤Ê¤É)¤Ç¤ÏÊÑ¹¹¼ê½ç¤¬°Û¤Ê¤ê¤Þ¤¹¡£¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï¡¢¸Ä¡¹¤Î UNIX ¥·¥¹¥Æ¥à¤Î¥É¥¥å¥á¥ó¥È¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <item>¥É¥á¥¤¥ó¥Í¡¼¥à¥µ¡¼¥Ó¥¹(DNS)¤È¥É¥á¥¤¥ó¥µ¡¼¥Á¥µ¥Õ¥£¥Ã¥¯¥¹¤ò <tt>/etc/resolv.conf</tt> ¤ËÄÉ²Ã¤·¤Þ¤¹¡£UNIX ¤Î¥Ð¡¼¥¸¥ç¥ó¤Ë¤è¤Ã¤Æ¤Ï¡¢/etc/nsswitch.conf ¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤·¤Æ DNS ¥µ¡¼¥Ó¥¹¤òÍ¸ú¤Ë¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£  <item><tt>/etc/networks</tt> ¥Õ¥¡¥¤¥ë¤ò¹¹¿·¤·¤ÆÀßÄêÆâÍÆ¤òÈ¿±Ç¤µ¤»¤Þ¤¹¡£  <item>Å¬ÀÚ¤Ê¥µ¡¼¥Ó¥¹¤òºÆ»ÏÆ°¤¹¤ë¤«¡¢¤Þ¤¿¤Ï¥·¥¹¥Æ¥à¤òºÆµ¯Æ°¤·¤Þ¤¹¡£  <item>¥²¡¼¥È¥¦¥§¥¤¥Þ¥·¥ó¤Ø¤ÎÀÜÂ³¤ò¥Æ¥¹¥È¤¹¤ë°Ù¤Ë¡¢¼¡¤Ëµ¤¹ <tt/ping/ ¥³¥Þ¥ó¥É¤òÈ¯¹Ô¤·¤Þ¤¹ - <tt>ping 192.168.0.1</tt> &nl;(¤Þ¤À LAN ¤ÎÀÜÂ³¤ò¥Æ¥¹¥È¤·¤Æ¤¤¤ë¤À¤±¤Ê¤Î¤Ç¡¢LAN ¤Î³°Éô¤Ø <tt>ping</tt> ¤ÏÂÇ¤Æ¤Þ¤»¤ó)¡£ <tt/ping/ ¤Ë¡Ö±þÅú¡×¤¬¤Ê¤¤¾ì¹ç¤Ë¤Ï¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀßÄê¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ </enum>   <sect1> NCSA Telnet ¥Ñ¥Ã¥±¡¼¥¸¤ò»ÈÍÑ¤·¤¿ DOS ¤ÎÀßÄê <enum>  <item>¤¢¤é¤«¤¸¤á¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤ª¤¤Þ¤¹¡£¥¤¥ó¥¹¥È¡¼¥ë¤Î¼ê½ç¤Ë¤Ä¤¤¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÎÀâÌÀ½ñ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <item>Å¬ÀÚ¤Ê¥Ñ¥±¥Ã¥È¥É¥é¥¤¥Ð¤òÆÉ¤ß¹þ¤ß¤Þ¤¹¡£¤¿¤È¤¨¤Ð¡¢I/O ¥Ý¡¼¥È¤¬ 300¡¢IRQ ¤¬ 10 ¤ËÀßÄê¤µ¤ì¤Æ¤¤¤ë NE2000 Ethernet ¥«¡¼¥É¤ò»ÈÍÑ¤¹¤ë¾ì¹ç¤Ë¤Ï¡¢<tt>nwpd 0x60 10 0x300</tt> ¤È¤¤¤¦¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤·¤Þ¤¹¡£  <item>¿·¤·¤¤¥Ç¥£¥ì¥¯¥È¥ê¤òºîÀ®¤·¡¢<tt>pkunzip tel2308b.zip</tt> ¤È ÆþÎÏ¤·¤Æ NCSA Telnet ¥Ñ¥Ã¥±¡¼¥¸¤òÅ¸³«¤·¤Þ¤¹¡£  <item>¥Æ¥¥¹¥È¥¨¥Ç¥£¥¿¤Ç <tt/config.tel/ ¥Õ¥¡¥¤¥ë¤ò³«¤¤Þ¤¹¡£  <item><tt/config.tel/ ¥Õ¥¡¥¤¥ë¤Î <tt>myip=192.168.0.x</tt>(1 < x < 255), netmask=255.255.255.0 ¤È¡¢³Æ¡¹ÀßÄê¤·¤Þ¤¹¡£  <item>¤³¤³¤Ç¤Ï¡¢<tt>hardware=packet¡¢interrupt=10¡¢ioaddr=60</tt> ¤ÈÀßÄê¤·¤Þ¤¹¡£  <item>¾¯¤Ê¤¯¤È¤â£±Âæ¤Î¥Þ¥·¥ó(¤Ä¤Þ¤ê¡¢Linux ¥Û¥¹¥È)¤ò¥²¡¼¥È¥¦¥§¥¤¤È¤·¤Æ»ØÄê¤·¤Æ¤ª¤¯É¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ <tscreen><verb> name=default host=yourlinuxhostname ¡ÚÌõÃí: Linux ¥Û¥¹¥È¤ÎÌ¾Á°¤ò»ØÄê¤·¤Þ¤¹¡£¡Û hostip=192.168.0.1 gateway=1 </verb></tscreen>  <item>¤³¤³¤Ç¡¢¥É¥á¥¤¥ó¥Í¡¼¥à¥µ¡¼¥Ó¥¹¤ò»ØÄê¤·¤Þ¤¹¡£ <tscreen><verb> name=dns.domain.com ; hostip=123.123.123.123; nameserver=1 </verb></tscreen>  Ãí - DNS ¤ÎÉôÊ¬¤Ï¡¢Linux ¥Û¥¹¥È¤¬»ÈÍÑ¤·¤Æ¤¤¤ë DNS ¤Î¥¢¥É¥ì¥¹¤Ë ÃÖ¤´¹¤¨¤Æ¤¯¤À¤µ¤¤¡£  <item><tt/config.tel/ ¥Õ¥¡¥¤¥ë¤òÊÝÂ¸¤·¤Þ¤¹¡£  <item>Linux ¥Þ¥·¥ó¤Ë telnet ¤·¤Æ(<tt>telnet 192.168.0.1</tt>)¡¢¥Í¥Ã¥È¥ï¡¼¥¯ÀÜÂ³¤ò¥Æ¥¹¥È¤·¤Þ¤¹¡£LOGIN ¥×¥í¥ó¥×¥È¤¬É½¼¨¤µ¤ì¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀßÄê¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ </enum>   <sect1> MacTCP ¤ÎÆ°ºî¤¹¤ë MacOS ¥Ù¡¼¥¹¥·¥¹¥Æ¥à¤Ç¤ÎÀßÄê <enum>  <item>¤¢¤é¤«¤¸¤á Ethernet ¥¢¥À¥×¥¿¤Î¥É¥é¥¤¥Ð¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤ª¤¤Þ¤¹¡£¥¤¥ó¥¹¥È¡¼¥ë¤Î¼ê½ç¤Ë¤Ä¤¤¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÎÀâÌÀ½ñ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <item><em/¡ÖMacTCP ¥³¥ó¥È¥í¡¼¥ë¥Ñ¥Í¥ë¡×/¤ò³«¤¤Þ¤¹¡£Å¬ÀÚ¤Ê¥Í¥Ã¥È¥ï¡¼¥¯¥É¥é¥¤¥Ð(EtherTalk ¤Ç¤Ï¤Ê¤¯ Ethernet)¤òÁªÂò¤·¡¢¡Ö¾ÜºÙ(More...)¡×¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£  <item>¡Ö¥¢¥É¥ì¥¹¤Î¼èÆÀ:(Obtain Address:)¡×¤Ç¡Ö¼êÆ°ÆþÎÏ(Manually)¡×¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£  <item>¡ÖIP ¥¢¥É¥ì¥¹:(IP Address:)¡×¤Î¥Ý¥Ã¥×¥¢¥Ã¥×¥á¥Ë¥å¡¼¤«¤é¡Ö¥¯¥é¥¹C(class C)¡×¤òÁªÂò¤·¤Þ¤¹¡£¤³¤Î¥À¥¤¥¢¥í¥°¥Ü¥Ã¥¯¥¹¤Î¤Û¤«¤ÎÉôÊ¬¤Ï¡¢¤½¤Î¤Þ¤Þ¤Ë¤·¤Æ¤ª¤¤Þ¤¹¡£  <item>¡Ö¥É¥á¥¤¥ó¥Í¡¼¥à¥µ¡¼¥Ð¾ðÊó:(Domain Name Server Information:)¡×¤ËÅ¬ÀÚ¤Ê¥¢¥É¥ì¥¹¤òÆþÎÏ¤·¤Þ¤¹¡£  <item>¡Ö¥²¡¼¥È¥¦¥§¥¤¥¢¥É¥ì¥¹:(Gateway Address:)¡×¤Ë 192.168.0.1 ¤ÈÆþÎÏ¤·¤Þ¤¹¡£  <item>¡ÖOK¡×¤ò¥¯¥ê¥Ã¥¯¤·¤ÆÀßÄêÃÍ¤òÊÝÂ¸¤·¤Þ¤¹¡£<em/¡ÖMacTCP ¥³¥ó¥È¥í¡¼¥ë¥Ñ¥Í¥ë¡×/¤Î¥á¥¤¥ó¥¦¥£¥ó¥É¥¦¤Ë¤¢¤ë¡ÖIP ¥¢¥É¥ì¥¹:(IP Address:)¡×¥Ü¥Ã¥¯¥¹¤Ë Mac ¥Þ¥·¥ó¤Î IP ¥¢¥É¥ì¥¹(192.168.0.x,1 < x < 255)¤òÆþÎÏ¤·¤Þ¤¹¡£  <item><em/¡ÖMacTCP ¥³¥ó¥È¥í¡¼¥ë¥Ñ¥Í¥ë¡×/¤òÊÄ¤¸¤Þ¤¹¡£ºÆµ¯Æ°¤òÂ¥¤¹¥À¥¤¥¢¥í¥°¥Ü¥Ã¥¯¥¹¤¬¸½¤ì¤¿¤é¡¢¥·¥¹¥Æ¥à¤òºÆµ¯Æ°¤·¤Þ¤¹¡£  <item>¤³¤Î»þÅÀ¤Ç¡¢Linux ¥Þ¥·¥ó¤Ë telnet ¤·¤Æ¥Í¥Ã¥È¥ï¡¼¥¯ÀÜÂ³¤ò¥Æ¥¹¥È¤¹¤ë¤³¤È¤â¤Ç¤¤Þ¤¹¡£ <em/MacTCP Watcher/ ¤È¤¤¤¦¥Õ¥ê¡¼¥¦¥§¥¢¥×¥í¥°¥é¥à¤ò»ÈÍÑ¤·¤Æ¤¤¤ë¾ì¹ç¤Ë¤Ï¡¢¡ÖPing¡×¥Ü¥¿¥ó¤ò¥¯¥ê¥Ã¥¯¤·¤Æ¡¢¥Ý¥Ã¥×¥¢¥Ã¥×¤·¤¿¥À¥¤¥¢¥í¥°¥Ü¥Ã¥¯¥¹¤Ë Linux ¥Þ¥·¥ó¤Î¥¢¥É¥ì¥¹(192.168.0.1)¤òÆþÎÏ¤·¤Þ¤¹(¤Þ¤À LAN ¤ÎÀÜÂ³¤ò¥Æ¥¹¥È¤·¤Æ¤¤¤ë¤À¤±¤Ê¤Î¤Ç¡¢LAN ¤Î³°Éô¤Ø ping ¤ÏÂÇ¤Æ¤Þ¤»¤ó)¡£ping ¤òÂÇ¤Ã¤Æ¤â¡Ö±þÅú¡×¤¬¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀßÄê¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£  <item>¥·¥¹¥Æ¥à¥Õ¥©¥ë¥À¤Ë <tt/Hosts/ ¥Õ¥¡¥¤¥ë¤òºîÀ®¤¹¤ì¤Ð¡¢LAN Æâ¤Î¥Þ¥·¥ó¤ò¥Û¥¹¥ÈÌ¾¤Ç»²¾È¤Ç¤¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£¤³¤Î¥Õ¥¡¥¤¥ë¤Ï¡¢¤¹¤Ç¤Ë¥·¥¹¥Æ¥à¥Õ¥©¥ë¥À¤ËÍÑ°Õ¤µ¤ì¤Æ¤¤¤Þ¤¹¡£(¥³¥á¥ó¥È¥¢¥¦¥È¤µ¤ì¤¿)¥µ¥ó¥×¥ë¥¨¥ó¥È¥ê¤¬´Þ¤Þ¤ì¡¢¸Ä¡¹¤Î¥Ë¡¼¥º¤Ë¹ç¤ï¤»¤Æ½¤Àµ¤Ç¤¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£ </enum>   <sect1> Open Transport ¤ÎÆ°ºî¤¹¤ë MacOS ¥Ù¡¼¥¹¥·¥¹¥Æ¥à¤Ç¤ÎÀßÄê <enum>  <item>¤¢¤é¤«¤¸¤á Ethernet ¥¢¥À¥×¥¿¤Î¥É¥é¥¤¥Ð¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤·¤ª¤¤Þ¤¹¡£¥¤¥ó¥¹¥È¡¼¥ë¤Î¼ê½ç¤Ë¤Ä¤¤¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÎÀâÌÀ½ñ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <item>¡ÖTCP/IP ¥³¥ó¥È¥í¡¼¥ë¥Ñ¥Í¥ë¡×¤ò³«¤¤¤Æ¡¢<em/¡ÖÊÔ½¸(Edit)¡×/¥á¥Ë¥å¡¼¤«¤é¡ÖÍøÍÑ¼Ô¥â¡¼¥É(User Mode...)¡×¤òÁªÂò¤·¤Þ¤¹¡£ÍøÍÑ¼Ô¥â¡¼¥É¤¬¾¯¤Ê¤¯¤È¤â¡Ö¾Ü¤·¤¤¾ðÊó¤â»ØÄê(Advanced)¡×¤ËÀßÄê¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò³ÎÇ§¤·¡¢¡ÖOK¡×¥Ü¥¿¥ó¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£  <item>¡Ö¥Õ¥¡¥¤¥ë(File)¡×¥á¥Ë¥å¡¼¤«¤é¡ÖÀßÄê(Configurations...)¡×¤òÁªÂò¤·¤Þ¤¹¡£ ¡Ö¾ÊÎ¬»þÀßÄê(Default)¡×¤òÁªÂò¤·¡¢¡ÖÊ£À½(Duplicate...)¡×¥Ü¥¿¥ó¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£ ¡ÖÀßÄê¤ÎÊ£À½(Duplicate Configuration)¡×¥À¥¤¥¢¥í¥°¤Ç¡ÖIP Masq¡×(¤â¤·¤¯¤Ï¡¢ÆÃÊÌ¤ÊÀßÄê¤Ç¤¢¤ë¤³¤È¤¬Ê¬¤«¤ë¤è¤¦¤ÊÌ¾Á°)¤òÆþÎÏ¤·¤Þ¤¹¡£¤¹¤ë¤È¡¢¡Ö¥Ç¥Õ¥©¥ë¥È¥³¥Ô¡¼(Default copy)¡×¤È¤¤¤¦¤è¤¦¤Ê¥á¥Ã¥»¡¼¥¸¤¬É½¼¨¤µ¤ì¤Þ¤¹¡£¡ÖOK¡×¥Ü¥¿¥ó¤ò¥¯¥ê¥Ã¥¯¤·¤Æ¡¢¡ÖºÑ¤ß(Make Active)¡×¥Ü¥¿¥ó¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£  <item>¡Ö·ÐÍ³Àè:(Connect via:)¡×¥Ý¥Ã¥×¥¢¥Ã¥×¤«¤é¡ÖEthernet¡×¤òÁªÂò¤·¤Þ¤¹¡£  <item>¡ÖÀßÄê:(Configure:)¡×¥Ý¥Ã¥×¥¢¥Ã¥×¤«¤éÅ¬ÀÚ¤Ê¹àÌÜ¤ò ÁªÂò¤·¤Þ¤¹¡£ ¤É¤Î¥ª¥×¥·¥ç¥ó¤òÁª¤ó¤Ç¤è¤¤¤«Ê¬¤«¤é¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢ÀèÄø¤ÈÆ±¤¸ ¡Ö¾ÊÎ¬»þÀßÄê(Default)¡×¤òÁªÂò¤·¡¢½ªÎ»¤·¤Æ¤¯¤À¤µ¤¤¡£ »ä¤Ï¡Ö¼êÆ°ÆþÎÏ(Manually)¡×¤òÁª¤Ó¤Þ¤·¤¿¡£  <item>¡ÖIP ¥¢¥É¥ì¥¹:(IP Address:)¡×¥Ü¥Ã¥¯¥¹¤Ë Mac ¤Î IP ¥¢¥É¥ì¥¹(192.168.0.x¡¢1< x < 255)¤òÆþÎÏ¤·¤Þ¤¹¡£  <item>¡Ö¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯:(Subnet mask:)¡×¥Ü¥Ã¥¯¥¹¤Ë 255.255.255.0 ¤ÈÆþÎÏ¤·¤Þ¤¹¡£  <item>¡Ö¥ë¡¼¥¿¥¢¥É¥ì¥¹:(Router address:)¡×¥Ü¥Ã¥¯¥¹¤Ë 192.168.0.1 ¤ÈÆþÎÏ¤·¤Þ¤¹¡£  <item>¡Ö¥Í¡¼¥à¥µ¡¼¥Ð¥¢¥É¥ì¥¹:(Name server addr.:)¡×¥Ü¥Ã¥¯¥¹¤Ë¥É¥á¥¤¥ó¥Í¡¼¥à¥µ¡¼¥Ð¤Î IP ¥¢¥É¥ì¥¹¤òÆþÎÏ¤·¤Þ¤¹¡£  <item>¡Ö¸¡º÷¥Ñ¥¹¤Î»ØÄê:(Implicit Search Path:)¡×¤Ç¡Ö¼«Ê¬¤Î¥É¥á¥¤¥óÌ¾(Starting domain name)¡×¥Ü¥Ã¥¯¥¹¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥É¥á¥¤¥ó¤ÎÌ¾Á°(¤¿¤È¤¨¤Ð¡¢microsoft.com)¤òÆþÎÏ¤·¤Þ¤¹¡£  <item>°Ê²¼¤ÎÁàºî¤Ï¡¢É¬Í×¤Ë±þ¤¸¤Æ¹Ô¤¤¤Þ¤¹¡£ÉÔÀµ¤ÊÃÍ¤ò»ØÄê¤¹¤ë¤È¡¢Æ°ºî¤¬ÉÔ°ÂÄê¤Ë¤Ê¤ë¤³¤È¤¬¤¢¤ê¤Þ¤¹¡£¤è¤¯Ê¬¤«¤é¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢¥Ö¥é¥ó¥¯¡¢Ì¤¥Á¥§¥Ã¥¯¡¢¤Þ¤¿¤ÏÌ¤ÁªÂò¤Î¤Þ¤Þ¤Ë¤·¤Æ¤ª¤¯Êý¤¬¤¤¤¤¤«¤â¤·¤ì¤Þ¤»¤ó¡£¥Õ¥£¡¼¥ë¥É¤ËÃÍ¤¬ÆþÎÏ¤µ¤ì¤Æ¤¤¤ë¾ì¹ç¤Ë¤Ï¡¢¤¹¤Ù¤Æºï½ü¤·¤Æ¤¯¤À¤µ¤¤¡£¤ï¤¿¤·¤ÎÃÎ¤ë¸Â¤ê¡¢TCP/IP ¥À¥¤¥¢¥í¥°¤Ë¤Ï¡¢ÁªÂòºÑ¤ß¤Î¥«¥¹¥¿¥à Hosts ¥Õ¥¡¥¤¥ë¤Î»ÈÍÑ¤òÌµ¸ú²½¤¹¤ë¤è¤¦¤Êµ¡Ç½¤Ï¤Ê¤¤¤è¤¦¤Ç¤¹¡£¤â¤·¤¢¤ì¤Ð¡¢¤ª¶µ¤¨¤¯¤À¤µ¤¤¡£  ¥Í¥Ã¥È¥ï¡¼¥¯¤Ç 802.3 ¥Õ¥ì¡¼¥à¥¿¥¤¥×¤¬É¬Í×¤È¤µ¤ì¤ë¾ì¹ç¤Ë¤Ï¡¢¡Ö802.3¡×¤Ë¥Á¥§¥Ã¥¯¤òÆþ¤ì¤Þ¤¹¡£  <item>¡Ö¥ª¥×¥·¥ç¥ó(Options...)¡×¥Ü¥¿¥ó¤ò¥¯¥ê¥Ã¥¯¤·¤Æ¡¢TCP/IP ¤ò¥¢¥¯¥Æ¥£¥Ö¤Ë¤·¤Þ¤¹¡£¤ï¤¿¤·¤Ï¡ÖÉ¬Í×¤Ê¤È¤¤Ë¤À¤±¥í¡¼¥É(Load only when needed)¡×¤È¤¤¤¦¥ª¥×¥·¥ç¥ó¤ò»ÈÍÑ¤·¤Æ¤¤¤Þ¤¹¡£¥Þ¥·¥ó¤ò¥ê¥Ö¡¼¥È¤»¤º¤Ë TCP/IP ¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤Î¼Â¹Ô¤È½ªÎ»¤ò²¿ÅÙ¤â·«¤êÊÖ¤¹¤è¤¦¤Ê»È¤¤Êý¤ò¤¹¤ë¾ì¹ç¡¢¡ÖÉ¬Í×¤Ê¤È¤¤Ë¤À¤±¥í¡¼¥É(Load only when needed)¡×¥ª¥×¥·¥ç¥ó¤ò»ÈÍÑ¤¹¤ì¤Ð¡¢¥Þ¥·¥ó¤Î¥á¥â¥ê´ÉÍý¤ËÂÐ¤¹¤ë±Æ¶Á¤òËÉ»ß¤Þ¤¿¤Ï·Ú¸º¤Ç¤¤Þ¤¹¡£ ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ë¥Á¥§¥Ã¥¯¤òÆþ¤ì¤Ê¤«¤Ã¤¿¾ì¹ç¡¢TCP/IP ¥×¥í¥È¥³¥ë¥¹¥¿¥Ã¥¯¤Ï¡¢É¬¤º¥í¡¼¥É¤µ¤ì¤Æ¡¢¤¤¤Ä¤Ç¤â»ÈÍÑ¤Ç¤¤ë¾õÂÖ¤Ë¤Ê¤ê¤Þ¤¹¡£¤³¤Î¥ª¥×¥·¥ç¥ó¤Ë¥Á¥§¥Ã¥¯¤òÆþ¤ì¤¿¾ì¹ç¡¢TCP/IP ¥¹¥¿¥Ã¥¯¤ÏÉ¬Í×¤Ê¤È¤¤Ë¼«Æ°Åª¤Ë¥í¡¼¥É¤µ¤ì¡¢ÉÔÍ×¤Ë¤Ê¤ë¤È¥¢¥ó¥í¡¼¥É¤µ¤ì¤Þ¤¹¡£¤³¤Î¤è¤¦¤Ê¥í¡¼¥É¤È¥¢¥ó¥í¡¼¥É¤Î·«¤êÊÖ¤·¤Ï¡¢¥á¥â¥ê¤ÎÃÇÊÒ²½¤ò¤Þ¤Í¤¯¶²¤ì¤¬¤¢¤ê¤Þ¤¹¡£  <item>¤³¤Î»þÅÀ¤Ç¡¢Linux ¥Þ¥·¥ó¤Ë ping ¤òÂÇ¤Ã¤Æ¥Í¥Ã¥È¥ï¡¼¥¯ÀÜÂ³¤ò¥Æ¥¹¥È¤¹¤ë¤³¤È¤â¤Ç¤¤Þ¤¹¡£MacTCP Watcher ¤È¤¤¤¦¥Õ¥ê¡¼¥¦¥§¥¢¥×¥í¥°¥é¥à¤ò»ÈÍÑ¤·¤Æ¤¤¤ë¾ì¹ç¤Ë¤Ï¡¢¡ÖPing¡×¥Ü¥¿¥ó¤ò¥¯¥ê¥Ã¥¯¤·¤Æ¡¢¥Ý¥Ã¥×¥¢¥Ã¥×¤·¤¿¥À¥¤¥¢¥í¥°¥Ü¥Ã¥¯¥¹¤Ë Linux ¥Þ¥·¥ó¤Î¥¢¥É¥ì¥¹(192.168.0.1)¤òÆþÎÏ¤·¤Þ¤¹(¤Þ¤À LAN ¤ÎÀÜÂ³¤ò¥Æ¥¹¥È¤·¤Æ¤¤¤ë¤À¤±¤Ê¤Î¤Ç¡¢LAN ¤Î³°Éô¤Ø ping ¤ÏÂÇ¤Æ¤Þ¤»¤ó)¡£ping ¤òÂÇ¤Ã¤Æ¤â¡Ö±þÅú¡×¤¬¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀßÄê¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£  <item>¥·¥¹¥Æ¥à¥Õ¥©¥ë¥À¤Ë <tt/Hosts/ ¥Õ¥¡¥¤¥ë¤òºîÀ®¤¹¤ì¤Ð¡¢LAN Æâ¤Î¥Þ¥·¥ó¤ò¥Û¥¹¥ÈÌ¾¤Ç»²¾È¤Ç¤¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£¤³¤Î¥Õ¥¡¥¤¥ë¤Ï¡¢¤¹¤Ç¤Ë¥·¥¹¥Æ¥à¥Õ¥©¥ë¥À¤ËÍÑ°Õ¤µ¤ì¤Æ¤¤¤Þ¤¹¡£(¥³¥á¥ó¥È¥¢¥¦¥È¤µ¤ì¤¿)¥µ¥ó¥×¥ë¥¨¥ó¥È¥ê¤¬´Þ¤Þ¤ì¡¢¸Ä¡¹¤Î¥Ë¡¼¥º¤Ë¹ç¤ï¤»¤Æ½¤Àµ¤Ç¤¤ë¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£¤³¤Î¥Õ¥¡¥¤¥ë¤¬¥·¥¹¥Æ¥à¥Õ¥©¥ë¥À¤Ë¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢MacTCP ¤ÎÆ°ºî¤·¤Æ¤¤¤ë¥·¥¹¥Æ¥à¤«¤é¥³¥Ô¡¼¤¹¤ë¤³¤È¤â¤Ç¤¤Þ¤¹¤·¡¢¼«Ê¬¤ÇºîÀ®¤¹¤ë¤³¤È¤â¤Ç¤¤Þ¤¹(¤³¤Î¥Õ¥¡¥¤¥ë¤Ï¡¢RFC952 ¤Ëµ½Ò¤µ¤ì¤Æ¤¤¤ë Unix ¤Î <tt>/etc/hosts</tt> ¥Õ¥¡¥¤¥ë¥Õ¥©¡¼¥Þ¥Ã¥È¤Ë½àµò¤·¤¿¤â¤Î¤Ç¤¹)¡£¥Õ¥¡¥¤¥ë¤òºîÀ®¤·¤¿¤é¡¢¡ÖTCP/IP ¥³¥ó¥È¥í¡¼¥ë¥Ñ¥Í¥ë¡×¤ò³«¤¡¢¡Ö<tt>Hosts</tt> ¥Õ¥¡¥¤¥ë¤ÎÁªÂò...(Select Hosts File...)¡×¥Ü¥¿¥ó¤ò¥¯¥ê¥Ã¥¯¤·¤Æ <tt/Hosts/ ¥Õ¥¡¥¤¥ë¤ò³«¤¤Þ¤¹¡£  <item>¥¯¥í¡¼¥º¥Ü¥¿¥ó¤ò¥¯¥ê¥Ã¥¯¤¹¤ë¤«¡¢¡Ö¥Õ¥¡¥¤¥ë¡×¥á¥Ë¥å¡¼¤Î¡ÖÊÄ¤¸¤ë¡×¤Þ¤¿¤Ï¡Ö½ªÎ»¡×¤òÁªÂò¤·¤Æ¤«¤é¡ÖÊÝÂ¸¡×¥Ü¥¿¥ó¤ò¥¯¥ê¥Ã¥¯¤·¤ÆÊÑ¹¹ÆâÍÆ¤òÊÝÂ¸¤·¤Þ¤¹¡£  <item>ÊÑ¹¹ÆâÍÆ¤Ï¤¿¤À¤Á¤ËÈ¿±Ç¤µ¤ì¤Þ¤¹¤¬¡¢¥·¥¹¥Æ¥à¤ò¥ê¥Ö¡¼¥È¤·¤Æ¤â¤«¤Þ¤¤¤Þ¤»¤ó¡£ </enum>   <sect1> DNS ¤ò»ÈÍÑ¤·¤¿ Novell ¥Í¥Ã¥È¥ï¡¼¥¯¤Ç¤ÎÀßÄê <enum>  <item>¤¢¤é¤«¤¸¤á Ethernet ¥¢¥À¥×¥¿¤ËÅ¬ÀÚ¤Ê¥É¥é¥¤¥Ð¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤ª¤¤Þ¤¹¡£¥¤¥ó¥¹¥È¡¼¥ë¤Î¼ê½ç¤Ë¤Ä¤¤¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÎÀâÌÀ½ñ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£   <item><url url="ftp://ftp.novell.com/pub/updates/unixconn/lwp5" name="The Novell LanWorkPlace page"> ¤«¤é tcpip16.exe ¤ò¥À¥¦¥ó¥í¡¼¥É¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¾åµ URI ¤ÏÌµ¸ú¤Ç¤¹¡£ ¤Þ¤¿¡¢ tcpip16.exe ¤Ï¸«¤Ä¤«¤ê¤Þ¤»¤ó¤Ç¤·¤¿¡£ Âå¤ï¤ê¤Ë¡¢ <url url="ftp://ftp.novell.com/pub/allupdates/tcp312.exe"> ¤È¤¤¤¦¤Î¤Ï ¸«¤Ä¤±¤é¤ì¤Þ¤·¤¿¡£ Ã¢¤·¡¢¤³¤ì¤¬¤³¤ÎÊ¸½ñ¤Çµ¤µ¤ì¤ëÉ¬Í×¤Ê¤â¤Î¤Ê¤Î¤«¤Ï¤ï¤«¤ê¤Þ¤»¤ó¡£¡Û  <item><verb>c:\nwclient\startnet.bat</verb> ¤òÊÔ½¸¤·¤Þ¤¹(¼¡¤Ë¼¨¤¹¤Î¤Ï¡¢¤ï¤¿¤·¤Î¥Õ¥¡¥¤¥ë¤ÎÃæ¿È¤Ç¤¹)¡£ <verb> SET NWLANGUAGE=ENGLISH LH LSL.COM LH KTC2000.COM LH IPXODI.COM LH tcpip LH VLM.EXE F: </verb>  <item><verb>c:\nwclient\net.cfg</verb> ¤òÊÔ½¸¤·¤Þ¤¹(¡ÖLink Driver¡×¤ÎÉôÊ¬¤Ï¡¢¤ª»È¤¤¤Î¥É¥é¥¤¥Ð¡¢¤¿¤È¤¨¤Ð¡¢NE2000 ¤È¤¤¤¦¤è¤¦¤ÊÃÍ¤ËÊÑ¹¹¤·¤Æ¤¯¤À¤µ¤¤)¡£ <verb> Link Driver KTC2000 Protocol IPX 0 ETHERNET_802.3 Frame ETHERNET_802.3 Frame Ethernet_II FRAME Ethernet_802.2 NetWare DOS Requester FIRST NETWORK DRIVE = F USE DEFAULTS = OFF VLM = CONN.VLM VLM = IPXNCP.VLM VLM = TRAN.VLM VLM = SECURITY.VLM VLM = NDS.VLM VLM = BIND.VLM VLM = NWP.VLM VLM = FIO.VLM VLM = GENERAL.VLM VLM = REDIR.VLM VLM = PRINT.VLM VLM = NETX.VLM Link Support Buffers 8 1500 MemPool 4096 Protocol TCPIP PATH SCRIPT C:\NET\SCRIPT PATH PROFILE C:\NET\PROFILE PATH LWP_CFG C:\NET\HSTACC PATH TCP_CFG C:\NET\TCP ip_address 192.168.0.xxx ip_router 192.168.0.1 </verb>  <verb> ¾åµ¤Î¡Öip_address¡×¥Õ¥£¡¼¥ë¥É¤Î IP ¥¢¥É¥ì¥¹¤òÊÑ¹¹¤·¤Æ(192.168.0.x¡¢1 < x < 255)¡¢ c:\bin\resolv.cfg ¤ò´°À®¤µ¤»¤Þ¤¹ - SEARCH DNS HOSTS SEQUENTIAL NAMESERVER xxx.xxx.xxx.xxx NAMESERVER yyy.yyy.yyy.yyy </verb>  <item>¼¡¤Ë¡¢¾åµ¤Î¡ÖNAMESERVER¡×¥¨¥ó¥È¥ê¤òÊÔ½¸¤·¤Æ¡¢¥í¡¼¥«¥ë DNS ¥µ¡¼¥Ð¤ÎÀµ¤·¤¤ IP ¥¢¥É¥ì¥¹¤Ë½ñ¤´¹¤¨¤Þ¤¹¡£  <item>¥²¡¼¥È¥¦¥§¥¤¥Þ¥·¥ó¤Ø¤ÎÀÜÂ³¤ò¥Æ¥¹¥È¤¹¤ë°Ù¤Ë¡¢¼¡¤Ëµ¤¹ <tt/ping/ ¥³¥Þ¥ó¥É¤òÈ¯¹Ô¤·¤Þ¤¹ - <tt>ping 192.168.0.1</tt> &nl;(¤Þ¤À LAN ¤ÎÀÜÂ³¤ò¥Æ¥¹¥È¤·¤Æ¤¤¤ë¤À¤±¤Ê¤Î¤Ç¡¢LAN ¤Î³°Éô¤Ø <tt>ping</tt> ¤ÏÂÇ¤Æ¤Þ¤»¤ó)¡£ <tt/ping/ ¤Ë¡Ö±þÅú¡×¤¬¤Ê¤¤¾ì¹ç¤Ë¤Ï¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀßÄê¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ </enum>  <sect1> OS/2 Warp ¤Ç¤ÎÀßÄê <enum>  <item>¤¢¤é¤«¤¸¤á Ethernet ¥¢¥À¥×¥¿¤ËÅ¬ÀÚ¤Ê¥É¥é¥¤¥Ð¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤ª¤¤Þ¤¹¡£¥¤¥ó¥¹¥È¡¼¥ë¤Î¼ê½ç¤Ë¤Ä¤¤¤Æ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÎÀâÌÀ½ñ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <item>¤Þ¤À TCP/IP ¥×¥í¥È¥³¥ë¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Æ¤¤¤Ê¤¤¾ì¹ç¤Ë¤Ï¡¢¥¤¥ó¥¹¥È¡¼¥ë¤·¤Þ¤¹¡£  <item>¡Ö¥×¥í¥°¥é¥à/TCP/IP (LAN) / TCP/IP¡× ¤ÎÀßÄê¤ò³«¤¤Þ¤¹¡£  <item>¡Ö¥Í¥Ã¥È¥ï¡¼¥¯¡×¤Ç TCP/IP ¥¢¥É¥ì¥¹(192.168.0.x)¤òÄÉ²Ã¤·¡¢¥Í¥Ã¥È¥Þ¥¹¥¯(255.255.255.0)¤òÀßÄê¤·¤Þ¤¹¡£  <item>¡Ö¥ë¡¼¥Æ¥£¥ó¥°¡×¤Ç¡ÖÄÉ²Ã¡×¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£¡Ö¥¿¥¤¥×¡×¤ò¡Ö¥Ç¥Õ¥©¥ë¥È(default)¡×¤ËÀßÄê¤·¡¢¡Ö¥ë¡¼¥¿¤Î¥¢¥É¥ì¥¹(Router Address)¡×¥Õ¥£¡¼¥ë¥É¤Ë Linux ¥Þ¥·¥ó¤Î IP ¥¢¥É¥ì¥¹(192.168.0.1)¤ò¥¿¥¤¥×¤·¤Þ¤¹¡£  <item>¡ÖHosts¡×¤ÎÍó¤Ë¤Ï¡¢Linux ¥Û¥¹¥È¤Ç»ÈÍÑ¤·¤Æ¤¤¤ë DNS (¥Í¡¼¥à¥µ¡¼¥Ð)¤Î¥¢¥É¥ì¥¹¤ÈÆ±¤¸¥¢¥É¥ì¥¹¤òÆþÎÏ¤·¤Þ¤¹¡£  <item>¡ÖTCP/IP ¥³¥ó¥È¥í¡¼¥ë¥Ñ¥Í¥ë¡×¤òÊÄ¤¸¤Þ¤¹¡£¤½¤Î¤¢¤È¤Ë¸½¤ì¤ë¼ÁÌä¤Ë¤Ï¡¢¤¹¤Ù¤Æ yes ¤ÈÅú¤¨¤Æ¤¤¤¤Þ¤¹¡£  <item>¥·¥¹¥Æ¥à¤ò¥ê¥Ö¡¼¥È¤·¤Þ¤¹¡£  <item>Linux ¥Þ¥·¥ó¤Ë ping ¤·¡¢¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀßÄê¤ò¥Æ¥¹¥È¤·¤Þ¤¹¡£ ¡ÖOS/2 ¥³¥Þ¥ó¥É¥×¥í¥ó¥×¥È¥¦¥£¥ó¥É¥¦¡×¤Ç <tt>ping 192.168.0.1</tt> ¤È ÆþÎÏ¤·¤Þ¤¹¡£ ping ¥Ñ¥±¥Ã¥È¤¬¼õ¿®¤µ¤ì¤ì¤Ð¡¢¤¹¤Ù¤Æ OK ¤Ç¤¹¡£ </enum>  <sect1>IBM AS/400 ¤Ç²ÔÆ¯¤¹¤ë OS/400 ¤Ç¤ÎÀßÄê  ¤³¤Î¥É¥¥å¥á¥ó¥È¤Ç¤Ï¡¢AS/400 ¤Ç²ÔÆ¯¤¹¤ë OS/400(¥Ð¡¼¥¸¥ç¥ó V4R1M0)¤Ç¤Î TCP/IP ¤ÎÀßÄêÊýË¡¤Ë¤Ä¤¤¤Æ¤Ï¸ÀµÚ¤·¤Þ¤»¤ó¡£  1) AS/400 ¤ÇÄÌ¿®ÀßÄêºî¶È¤ò¹Ô¤¦¤Ë¤Ï¡¢¥æ¡¼¥¶¥×¥í¥Õ¥¡¥¤¥ë¤Ë *IOSYSCFG (I/O System Configuration) ¤È¤¤¤¦ÆÃÊÌ¤Ê¸¢¸Â¤¬ÄêµÁ¤µ¤ì¤Æ¤¤¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£¥æ¡¼¥¶¥×¥í¥Õ¥¡¥¤¥ë¤ÎÀßÄêÆâÍÆ¤Ï¡¢DSPUSRPRF ¥³¥Þ¥ó¥É¤Ë¤è¤Ã¤Æ¥Á¥§¥Ã¥¯¤Ç¤¤Þ¤¹¡£  2) GO CFGTCP ¥³¥Þ¥ó¥É¤ò¥¿¥¤¥×¤·¤Æ¡¢¡ÖTCP/IP ¤ÎÀßÄê¡×¥á¥Ë¥å¡¼¤ò¸Æ¤Ó½Ð¤·¤Þ¤¹¡£  3) ¡Ö¥ª¥×¥·¥ç¥ó2(Option 2)¡×¤Î¡ÖTCP/IP ¥ë¡¼¥È¤ÎÀßÄê(Work with TCP/IP Routes)¡×¤òÁªÂò¤·¤Þ¤¹¡£  4) ¡ÖOpt¡×¥Õ¥£¡¼¥ë¥É¤Ë 1 ¤ÈÆþÎÏ¤·¤Æ¥ë¡¼¥È¤òÄÉ²Ã¤·¤Þ¤¹¡£ * ¡Ö¥ë¡¼¥ÈÀè(Route Destination)¡×¤Ë¤Ï¡¢*DFTROUTE ¤È¥¿¥¤¥×¤·¤Þ¤¹¡£ * ¡Ö¥µ¥Ö¥Í¥Ã¥È¥Þ¥¹¥¯(Subnet Mask)¡×¤Ë¤Ï¡¢*NONE ¤È¥¿¥¤¥×¤·¤Þ¤¹¡£ * ¡Ö¥µ¡¼¥Ó¥¹¤Î¥¿¥¤¥×(Type of Service)¡×¤Ë¤Ï¡¢*NORMAL ¤È¥¿¥¤¥×¤·¤Þ¤¹¡£ * ¡Ö¼¡¥Û¥Ã¥×(Nex Hop)¡×¤Ë¤Ï¡¢¥²¡¼¥È¥¦¥§¥¤(Linux ¥Þ¥·¥ó)¤Î¥¢¥É¥ì¥¹¤ò¥¿¥¤¥×¤·¤Þ¤¹¡£    <sect1> ¤½¤ÎÂ¾¤Î¥·¥¹¥Æ¥à¤Ç¤ÎÀßÄê  Â¾¤Î¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤Ç¤â¡¢ÂçÂÎÆ±¤¸¤è¤¦¤ÊÎ®¤ì¤ÇÀßÄê¤¬¹Ô¤¨¤ë¤Ï¤º¤Ç¤¹¡£¾åµ¤Î³Æ¥»¥¯¥·¥ç¥ó¤òÆÉ¤ßÊÖ¤·¤ÆÀßÄê¤ÎÎ®¤ì¤òÇÄ°®¤·¤Æ¤¯¤À¤µ¤¤¡£¤³¤³¤Ç¸ÀµÚ¤Ç¤¤Ê¤«¤Ã¤¿¥·¥¹¥Æ¥à¤Ç¤ÎÀßÄêÊýË¡¤ò½ñ¤¤¤Æ¤ß¤è¤¦¤È»×¤¦Êý¤Ï¡¢¾ÜºÙ¤ÊÀßÄê¼ê½ç¤ò <htmlurl url="mailto:ambrose@writeme.com" name="ambrose@writeme.com"> µÚ¤Ó <htmlurl url="mailto:dranch@trinnet.net" name="dranch@trinnet.net"> ¤Þ¤Ç¤ªÁ÷¤ê¤¯¤À¤µ¤¤¡£      <sect> IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥Æ¥¹¥È <label id="Testing">   ¤µ¤ÆÆñ¤·¤¤ºî¶È¤â¤ä¤Ã¤È½ª¤ï¤ê¡¢¤¤¤è¤¤¤è IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÎËÜ³ÊÅª¤Ê¥Æ¥¹¥È¤ò¤¹¤ë»þ¤¬Íè¤Þ¤·¤¿¡£¤Þ¤À¤Ç¤¢¤ì¤Ð Linux ¥Ü¥Ã¥¯¥¹¤òºÆµ¯Æ°¤·¤Æ /etc/rc.d/rc.firewall ¤¬Àµ¾ï¤Ë¼Â¹Ô¤µ¤ì¤ë¤³¤È¤ò³ÎÇ§¤·¤Þ¤·¤ç¤¦¡£¤½¤Î³ÎÇ§¤¬½ª¤Ã¤¿¤é¼¡¤ÏÆâÉô LAN ¤ÎÀÜÂ³¤È¡¢Linux ¥Û¥¹¥È¤«¤é¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø¤ÎÀÜÂ³¤Î¤É¤Á¤é¤âÀµ¤·¤¯Æ°ºî¤·¤Æ¤¤¤ë¤³¤È¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£  ¥Þ¥¹¥«¥ì¡¼¥É¤ÎÀßÄê¤¬Á´¤ÆÀµ¤·¤¯¹Ô¤ï¤ì¤Æ¤¤¤ë¤³¤È¤ò³ÎÇ§¤¹¤ë¤¿¤á¤Ë¡¢°Ê²¼¤Î 10 ¥¹¥Æ¥Ã¥×¤Î¥Æ¥¹¥È¤ò¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£  <sect1>¥í¡¼¥«¥ë PC ¤ÎÀÜÂ³¥Æ¥¹¥È <itemize>  <item><bf>¥¹¥Æ¥Ã¥× 1 - ¥í¡¼¥«¥ë PC ¤ÎÀÜÂ³¥Æ¥¹¥È</bf>  ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÆâÉô¤Î¥³¥ó¥Ô¥å¡¼¥¿¤Ç¡¢¼«Ê¬¤Î ¥í¡¼¥«¥ë IP ¥¢¥É¥ì¥¹¤Ë ping ¤òÂÇ¤Ã¤Æ¤¯¤À¤µ¤¤ (¤Ä¤Þ¤ê ping 192.168.0.10 )¡£ ¤³¤Î¥Æ¥¹¥È¤Ï TCP/IP ¤¬¥í¡¼¥«¥ë¤Î PC ¤ÇÀµ¤·¤¯Æ°ºî¤·¤Æ¤¤¤ë¤³¤È¤ò ³ÎÇ§¤·¤Þ¤¹¡£ ºÇ¶á¤Î¤Û¤È¤ó¤É¤Î¥ª¥Ú¥ì¡¼¥Æ¥£¥ó¥°¥·¥¹¥Æ¥à¤Ë¤ÏºÇ½é¤«¤éping ¥³¥Þ¥ó¥É¤¬ ¤¢¤ê¤Þ¤¹¡£ ¥í¡¼¥«¥ë¤Î IP ¥¢¥É¥ì¥¹¤Ø¤Î ping ¤¬Àµ¾ï¤ËÆ°ºî¤·¤Ê¤¤¾ì¹ç¡¢¤³¤Î HOWTO ¤Ç Á°½Ò¤Î <ref id="Configuring-clients" name="¥¯¥é¥¤¥¢¥ó¥È¤ÎÀßÄê"> ¤ÇÀâÌÀ¤·¤¿ÄÌ¤ê¤Ë ¥¯¥é¥¤¥¢¥ó¥È PC ¾å¤Ç TCP/IP ¤¬Àµ¤·¤¯ÀßÄê¤µ¤ì¤Æ¤¤¤ë¤«¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ ½ÐÎÏ·ë²Ì¤Ï°Ê²¼¤Î¤è¤¦¤Ë¤Ê¤ë¤Ï¤º¤Ç¤¹(ping ¤òÃæ»ß¤¹¤ë¤Ë¤Ï Control-C ¤ò ²¡¤·¤Æ¤¯¤À¤µ¤¤)¡£  <code> masq-client# ping 192.168.0.10 PING 192.168.0.10 (192.168.0.10): 56 data bytes 64 bytes from 192.168.0.10: icmp_seq=0 ttl=255 time=0.8 ms 64 bytes from 192.168.0.10: icmp_seq=1 ttl=255 time=0.4 ms 64 bytes from 192.168.0.10: icmp_seq=2 ttl=255 time=0.4 ms 64 bytes from 192.168.0.10: icmp_seq=3 ttl=255 time=0.5 ms --- 192.168.0.10 ping statistics --- 4 packets transmitted, 4 packets received, 0% packet loss round-trip min/avg/max = 0.4/0.5/0.8 ms </code> </itemize>  <sect1> Linux ¤ÎÆâÉôÀÜÂ³¤Î¥Æ¥¹¥È <itemize>  <item><bf>¥¹¥Æ¥Ã¥× 2 - Linux ¤ÎÆâÉôÀÜÂ³¤Î¥Æ¥¹¥È</bf>  ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤Ç¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¥«¡¼¥É¤Î ÆâÉô IP ¥¢¥É¥ì¥¹¤Ë ping ¤òÂÇ¤Ã¤Æ¤¯¤À¤µ¤¤ (¤Ä¤Þ¤ê ping 192.168.0.1)¡£ ½ÐÎÏ·ë²Ì¤Ï°Ê²¼¤Î¤è¤¦¤Ë¤Ê¤ë¤Ï¤º¤Ç¤¹(ping ¤òÃæ»ß¤¹¤ë¤Ë¤Ï Control-C ¤ò²¡¤·¤Æ¤¯¤À¤µ¤¤)¡£ <code> masq-client# ping 192.168.0.1 PING 192.168.0.1 (192.168.0.1): 56 data bytes 64 bytes from 192.168.0.1: icmp_seq=0 ttl=255 time=0.8 ms 64 bytes from 192.168.0.1: icmp_seq=1 ttl=255 time=0.4 ms 64 bytes from 192.168.0.1: icmp_seq=2 ttl=255 time=0.4 ms 64 bytes from 192.168.0.1: icmp_seq=3 ttl=255 time=0.5 ms --- 192.168.0.1 ping statistics --- 4 packets transmitted, 4 packets received, 0% packet loss round-trip min/avg/max = 0.4/0.5/0.8 ms </code> </itemize>  <sect1>Linux ¤Î³°ÉôÀÜÂ³¤Î¥Æ¥¹¥È <itemize>  <item><bf>¥¹¥Æ¥Ã¥× 3 - Linux ¤Î³°ÉôÀÜÂ³¤Î¥Æ¥¹¥È</bf>  ¼¡¤Ë¡¢¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¡¼¥Ð¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤µ¤ì¤¿ ¥Í¥Ã¥È¥ï¡¼¥¯¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¥«¡¼¥É¤Î³°Éô IP¥¢¥É¥ì¥¹¤Ë ping ¤ò ÂÇ¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤Î¥¢¥É¥ì¥¹¤Ï PPP¡¢¥¤¡¼¥µ¥Í¥Ã¥ÈÅù¤Ç ISP ¤ËÀÜÂ³¤µ¤ì¤¿¥¢¥É¥ì¥¹¤Ç¤¹¡£ ¤³¤Î IP ¥¢¥É¥ì¥¹¤¬¤ï¤«¤é¤Ê¤±¤ì¤Ð¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥È¡¦¥¢¥É¥ì¥¹¤ò Ä´¤Ù¤ë¤¿¤á¤Ë¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¡¼¥Ð¾å¤ÇLinux¥³¥Þ¥ó¥É "/sbin/ifconfig" ¤ò¼Â¹Ô¤·¤Æ¤¯¤À¤µ¤¤¡£ ½ÐÎÏ·ë²Ì¤Ï°Ê²¼¤Î¤è¤¦¤Ë¤Ê¤ë¤Ï¤º¤Ç¤¹(eth0 ¤Î IP ¥¢¥É¥ì¥¹¤òÄ´¤Ù¤Æ¤¤¤ë¾ì¹ç)¡£ <code> eth0 Link encap:Ethernet HWaddr 00:08:C7:A4:CC:5B inet addr:12.13.14.15 Bcast:64.220.150.255 Mask:255.255.255.0 UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:6108459 errors:0 dropped:0 overruns:0 frame:0 TX packets:5422798 errors:8 dropped:0 overruns:0 carrier:8 collisions:4675 txqueuelen:100 Interrupt:11 Base address:0xfcf0 </code>  ¤´Í÷¤ÎÄÌ¤ê¡¢¤³¤ÎÎã¤Ë¤ª¤¤¤Æ³°Éô IP ¥¢¥É¥ì¥¹¤Ï "12.13.14.15" ¤Ç¤¹¡£ "ifconfig" ¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤¹¤ë¤³¤È¤Ç IP ¥¢¥É¥ì¥¹¤¬¤ï¤«¤Ã¤¿¤Î¤Ç¡¢¤³¤Î ³°Éô IP ¥¢¥É¥ì¥¹¤Ë ping ¤òÂÇ¤Á¤Þ¤¹¡£ ¤³¤ì¤Ï¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¡¼¥Ð¤¬³Î¤«¤Ë¥Í¥Ã¥È¥ï¡¼¥¯¤ËÀÜÂ³¤·¤Æ¤¤¤ë¤³¤È¤ò ³Î¤«¤á¤ë¤³¤È¤Ë¤Ê¤ê¤Þ¤¹¡£ ½ÐÎÏ·ë²Ì¤Ï°Ê²¼¤Î¤è¤¦¤Ë¤Ê¤ë¤Ï¤º¤Ç¤¹ (ping ¤òÃæ»ß¤¹¤ë¤Ë¤Ï Control-C ¤ò ²¡¤·¤Æ¤¯¤À¤µ¤¤)¡£ <code> masq-server# ping 12.13.14.15 PING 12.13.14.15 (12.13.14.15): 56 data bytes 64 bytes from 12.13.14.15: icmp_seq=0 ttl=255 time=0.8 ms 64 bytes from 12.13.14.15: icmp_seq=1 ttl=255 time=0.4 ms 64 bytes from 12.13.14.15: icmp_seq=2 ttl=255 time=0.4 ms 64 bytes from 12.13.14.15: icmp_seq=3 ttl=255 time=0.5 ms --- 12.13.14.15 ping statistics --- 4 packets transmitted, 4 packets received, 0% packet loss round-trip min/avg/max = 0.4/0.5/0.8 ms </code>  ¤â¤·¤³¤ì¤é¤Î¥Æ¥¹¥È¤Î¤É¤Á¤é¤«¤¬Æ°ºî¤·¤Ê¤¤¤Ê¤é¡¢¸µ¤ËÌá¤Ã¤Æ¥Í¥Ã¥È¥ï¡¼¥¯¤Î ¥±¡¼¥Ö¥ëÀÜÂ³¤òºÆ³ÎÇ§¤·¡¢ "dmesg" ¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤·¤¿¤È¤¤Ë ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¡¼¥Ð¤Î2¤Ä¤Î NIC ¤¬É½¼¨¤µ¤ì¤ë¤«³ÎÇ§¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤Î½ÐÎÏ·ë²Ì¤ÎÎã¤Ï "dmesg" ¥³¥Þ¥ó¥É¤Î½ÐÎÏ¤ÎºÇ¸å¤Î¤Û¤¦¤¬°Ê²¼¤Î¤è¤¦¤Ë ¤Ê¤ë¤Ç¤·¤ç¤¦ - <code> . . PPP: version 2.3.7 (demand dialling) TCP compression code copyright 1989 Regents of the University of California PPP line discipline registered. 3c59x.c:v0.99H 11/17/98 Donald Becker http://cesdis.gsfc.nasa.gov/linux/drivers/ vortex.html eth0: 3Com 3c905 Boomerang 100baseTx at 0xfe80, 00:60:08:a7:4e:0e, IRQ 9 8K word-wide RAM 3:5 Rx:Tx split, autoselect/MII interface. MII transceiver found at address 24, status 786f. Enabling bus-master transmits and whole-frame receives. eth1: 3Com 3c905 Boomerang 100baseTx at 0xfd80, 00:60:97:92:69:f8, IRQ 9 8K word-wide RAM 3:5 Rx:Tx split, autoselect/MII interface. MII transceiver found at address 24, status 7849. Enabling bus-master transmits and whole-frame receives. Partition check: sda: sda1 sda2 < sda5 sda6 sda7 sda8 > sdb: . . </code>  ¤Þ¤¿¡¢ ¤ª»È¤¤¤Î Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ç¤Î NIC ¤ÎÀßÄê¤¬¡¢¤³¤Î HOWTO ¤ÎÁ°¤Î¤Û¤¦¤Ç¿ä¾©¤·¤Æ¤¤¤ëÄÌ¤ê¤ËÀµ¤·¤¯ÀßÄê¤µ¤ì¤Æ¤¤¤ë¤«³ÎÇ§¤¹¤ë¤³¤È¤òËº¤ì¤Ê¤¤¤Ç¤¯¤À¤µ¤¤¡£ </itemize>  <sect1>¥í¡¼¥«¥ë PC ¤«¤é Linux ¤Ø¤ÎÀÜÂ³¥Æ¥¹¥È <itemize>  <item><bf>¥¹¥Æ¥Ã¥× 4 - ¥í¡¼¥«¥ë PC ¤«¤é Linux ¤Ø¤ÎÀÜÂ³¥Æ¥¹¥È</bf>  ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î¥³¥ó¥Ô¥å¡¼¥¿¤«¤é¡¢¥Þ¥¹¥«¥ì¡¼¥É¤·¤Æ¤¤¤ë Linux ¥Ü¥Ã¥¯¥¹¤ÎÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Î¥¤¡¼¥µ¥Í¥Ã¥È¡¦¥«¡¼¥É¤Î IP ¥¢¥É¥ì¥¹¤Ë ping ¤òÂÇ¤Á¤Þ¤¹(¤Ä¤Þ¤ê ping 192.168.0.1)¡£¤³¤ì¤Ï¡¢ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯µÚ¤Ó¥ë¡¼¥Æ¥£¥ó¥°¤¬Àµ¤·¤¤¤³¤È¤ò¸¡¾Ú¤·¤Þ¤¹¡£½ÐÎÏ·ë²Ì¤Ï°Ê²¼¤Î¤è¤¦¤Ë¤Ê¤ë¤Ï¤º¤Ç¤¹(ping ¤òÃæ»ß¤¹¤ë¤Ë¤Ï Control-C ¤ò²¡¤·¤Æ¤¯¤À¤µ¤¤)¡£ <code> masq-client# ping 192.168.0.1 PING 192.168.0.1 (192.168.0.1): 56 data bytes 64 bytes from 192.168.0.1: icmp_seq=0 ttl=255 time=0.8 ms 64 bytes from 192.168.0.1: icmp_seq=1 ttl=255 time=0.4 ms 64 bytes from 192.168.0.1: icmp_seq=2 ttl=255 time=0.4 ms 64 bytes from 192.168.0.1: icmp_seq=3 ttl=255 time=0.5 ms --- 192.168.0.1 ping statistics --- 4 packets transmitted, 4 packets received, 0% packet loss round-trip min/avg/max = 0.4/0.5/0.8 ms </code>  ¤â¤·¤¦¤Þ¤¯¤¤¤«¤Ê¤¤¤Î¤Ê¤é¡¢¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¡¼¥ÐµÚ¤Ó ¥¯¥é¥¤¥¢¥ó¥È¡¦¥³¥ó¥Ô¥å¡¼¥¿¤Î¥¤¡¼¥µ¥Í¥Ã¥È¡¦¥«¡¼¥É¤Î "link" ¥é¥ó¥×¤¬ ÅÀÅô¤·¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ °ìÈÌÅª¤Ë¤Ï³Æ¥¤¡¼¥µ¥Í¥Ã¥È¡¦¥«¡¼¥É¤Î¸åÉô¤Ë¤¢¤ë LED ¤È¥Ï¥Ö¤ä¥¹¥¤¥Ã¥Á¤ò »ÈÍÑ¤·¤Æ¤¤¤ë¾ì¹ç¤Ï¤½¤Î LED ¤¬ÅÀÅô¤·¤Þ¤¹¡£ ¤â¤·ÅÀÅô¤·¤Æ¤¤¤Ê¤¤¤Ê¤é¤Ð¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÆâÉô¤Î ¥³¥ó¥Ô¥å¡¼¥¿¤¬ <ref id="Configuring-clients" name="¥¯¥é¥¤¥¢¥ó¥È¤ÎÀßÄê"> ¤Î¾Ï¤ÇÀâÌÀ¤·¤¿¤è¤¦¤Ë Àµ¤·¤¯ÀßÄê¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥¯¥é¥¤¥¢¥ó¥È¤ËÌäÂê¤¬Ìµ¤±¤ì¤Ð¡¢ ¥Í¥Ã¥È¥ï¡¼¥¯¡¦¥±¡¼¥Ö¥ë¤ÎÇÛÀþ¤òºÆ³ÎÇ§¤·¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë ¥¯¥é¥¤¥¢¥ó¥È¡¦¥³¥ó¥Ô¥å¡¼¥¿¤Î NIC ¤È Linux ¥Ü¥Ã¥¯¥¹¤ÎÆâÉô NIC ¤Î Î¾Êý¤Î LINK ¥é¥¤¥È¤¬ÅÀÅô¤·¤Æ¤¤¤ë¤³¤È¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ </itemize>  <sect1>ÆâÉô¥Þ¥¹¥«¥ì¡¼¥É¤Î ICMP Å¾Á÷¤Î¥Æ¥¹¥È <itemize>  <item><bf>¥¹¥Æ¥Ã¥× 5 - ÆâÉô¥Þ¥¹¥«¥ì¡¼¥É¤Î ICMP Å¾Á÷¤Î¥Æ¥¹¥È</bf>  ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î¥³¥ó¥Ô¥å¡¼¥¿¤«¤é¡¢ ¾åµ¥¹¥Æ¥Ã¥× 3 ¤ÇÆÀ¤é¤ì¤¿¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¡¼¥Ð¤Î³°Éô IP ¥¢¥É¥ì¥¹¤Ë ping ¤òÂÇ¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤Î¥¢¥É¥ì¥¹¤Ï PPP¡¢¥¤¡¼¥µ¥Í¥Ã¥ÈÅù¤Ç ISP ¤ËÀÜÂ³¤µ¤ì¤¿¥¢¥É¥ì¥¹¤Ç¤¹¡£ ¤³¤Î ping ¤Ï¡¢¥Þ¥¹¥«¥ì¡¼¥É¤¬Æ°ºî¤¹¤ë¤³¤È¤ò¥Æ¥¹¥È¤·¤Þ¤¹(ÆÃ¤Ë ICMP ¤Ï ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤Þ¤¹)¡£  ¤â¤·¤¦¤Þ¤¯¤¤¤«¤Ê¤¤¾ì¹ç¡¢¤Þ¤º¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥¯¥é¥¤¥¢¥ó¥È PC ¤Î ¥Ç¥Õ¥©¥ë¥È¡¦¥²¡¼¥È¥¦¥§¥¤¤¬¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¡¼¥Ð¤ÎÆâÉô NIC ¤Î IP ¥¢¥É¥ì¥¹¤òÀµ¤·¤¯»Ø¤·¤Æ¤¤¤ë¤«³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ ¤Þ¤¿ /etc/rc.d/rc.firewall ¤Î¥¹¥¯¥ê¥×¥È¤¬¥¨¥é¡¼Ìµ¤·¤ËÁö¤ë¤³¤È¤ò ºÆ³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ ¥Æ¥¹¥È¤Î¤¿¤á /etc/rc.d/rc.firewall ¤Î¥¹¥¯¥ê¥×¥È¤òºÆÅÙÁö¤é¤»¤Æ¤ß¤Æ¡¢ ¤½¤ì¤¬Áö¤ë¤«¤É¤¦¤«¸«¤Æ¤¯¤À¤µ¤¤¡£ ¤Þ¤¿¤Û¤È¤ó¤É¤Î¥«¡¼¥Í¥ë¤Ï¥Ç¥Õ¥©¥ë¥È¤ÇÍ¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤Þ¤¹¤¬¡¢ ¥«¡¼¥Í¥ë¡¦¥³¥ó¥Õ¥£¥®¥å¥ì¡¼¥·¥ç¥ó¤ÎÃæ¤Î "ICMP Masquerading" ¤È /etc/rc.d/rc.firewall ¥¹¥¯¥ê¥×¥È¤ÎÃæ¤Î "IP Forwarding" ¤ò Í¸ú¤Ë¤·¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£  ¤½¤ì¤Ç¤â¤Þ¤À¤¦¤Þ¤¯Æ°ºî¤·¤Ê¤¤¤Ê¤é¡¢Linux ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¡¼¥Ð¾å¤Ç ¼¡¤Î¥³¥Þ¥ó¥É¤òÁö¤é¤»¤Æ¤½¤Î½ÐÎÏ·ë²Ì¤ò¸«¤Æ¤¯¤À¤µ¤¤ - <itemize>  <item> "ifconfig" - ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤µ¤ì¤Æ¤¤¤ë ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¡Êppp0 ¤ä eth0 ¤Ê¤É¡Ë¤¬Àµ¤·¤¯Æ°ºî¤·¤Æ¤¤¤Æ¡¢ Àµ¤·¤¤¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³¤Î IP ¥¢¥É¥ì¥¹¤¬ÆÀ¤é¤ì¤Æ¤¤¤ë¤³¤È¤ò³ÎÇ§¤·¤Þ¤¹¡£ ¤³¤Î½ÐÎÏ·ë²Ì¤Î°ìÎã¤Ï¾åµ¥¹¥Æ¥Ã¥×3¤ÎÃæ¤Ç¼¨¤µ¤ì¤Æ¤¤¤Þ¤¹¡£  <item> "netstat -rn" - ¥Ç¥Õ¥©¥ë¥È¡¦¥²¡¼¥È¥¦¥§¥¤ (Gateway ¤ÎÎó¤ÎÃæ¤Ë¤¢¤ë IP ¥¢¥É¥ì¥¹¤ò»ý¤ÄÎó) ¤¬ÀßÄê¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò ³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤Î½ÐÎÏ·ë²Ì¤Î°ìÎã¤Ï°Ê²¼¤Î¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£ <code> masq-server# netstat -rn Kernel IP routing table Destination Gateway Genmask Flags MSS Window irtt Iface 192.168.0.1 0.0.0.0 255.255.255.255 UH 0 16384 0 eth1 12.13.14.15 0.0.0.0 255.255.255.255 UH 0 16384 0 eth0 12.13.14.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1 127.0.0.0 0.0.0.0 255.0.0.0 U 0 16384 0 lo 0.0.0.0 12.13.14.1 0.0.0.0 UG 0 16384 0 eth0 </code>  0.0.0.0 ¤Ç»Ï¤Þ¤Ã¤Æ¤¤¤ëºÇ¸å¤Î¹Ô¤ËÃíÌÜ¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤Î Gateway ¥Õ¥£¡¼¥ë¥É¤Ë IP ¥¢¥É¥ì¥¹¤¬¤¢¤ê¤Þ¤¹¤Í¡£ ¤½¤Î¥Õ¥£¡¼¥ë¥É¤ÎÃæ¤ËÀßÄê¤·¤¿ IP ¥¢¥É¥ì¥¹¤¬¸«¤¨¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£  <item> "cat /proc/sys/net/ipv4/ip_forward" - ¤½¤Î·ë²Ì¤¬ "1" ¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤³¤È¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£¤½¤¦¤Ê¤Ã¤Æ¤¤¤ì¤Ð Linux ¤Î¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤ÏÍ¸ú¤È¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£  <item>2.2.x ¥æ¡¼¥¶¤Ê¤é "/sbin/ipchains -n -L" ¤È¤¤¤¦ ¥³¥Þ¥ó¥É¤ò¡¢°¿¤Ï 2.0.x ¥æ¡¼¥¶¤Ê¤é "/sbin/ipfwadm -F -l" ¤È¤¤¤¦¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ ÆÃ¤Ë¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Î¾Ï¤òÄ´¤Ù¤Æ¡¢¤¢¤Ê¤¿¤¬¥Þ¥¹¥«¥ì¡¼¥É¤òÍ¸ú¤Ë ¤·¤Æ¤¤¤ë¤«³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ Ã±½ã¤Ê rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤ò»È¤Ã¤¿¥æ¡¼¥¶¡¼¤Î¾ì¹ç¡¢ IPCHAINS ¤Î ½ÐÎÏ·ë²Ì¤Î°ìÎã¤Ï°Ê²¼¤Î¤è¤¦¤Ë¤Ê¤ë¤Ç¤·¤ç¤¦¡£ <code> . . Chain forward (policy REJECT): target prot opt source destination ports MASQ all ------ 192.168.0.0/24 0.0.0.0/0 n/a ACCEPT all ----l- 0.0.0.0/0 0.0.0.0/0 n/a . . </code> </itemize> </itemize>  <sect1>¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ ICMP ¤Î³°ÉôÅ¾Á÷¤Î¥Æ¥¹¥È <itemize>  <item><bf>¥¹¥Æ¥Ã¥× 6 - ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ ICMP ¤Î³°ÉôÅ¾Á÷¤Î¥Æ¥¹¥È</bf>  ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î¥³¥ó¥Ô¥å¡¼¥¿¤«¤é¡¢ ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î³°Éô¤Î¸ÇÄê TCP/IP ¥¢¥É¥ì¥¹¤ËÂÐ¤·¤Æ ping ¤ò ÂÇ¤Á¤Þ¤¹(¤Ä¤Þ¤ê ping 152.19.254.81 ¤³¤ì¤Ï http://metalab.unc.edu¡¡-¡¡MetaLabs Linux Archive ¤Î home ¤Ç¤¹)¡£ ¤³¤ì¤¬Æ°ºî¤¹¤ë¾ì¹ç¡¢ICMP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤¬¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Ç Æ°ºî¤·¤Æ¤¤¤ë¤³¤È¤ò°ÕÌ£¤·¤Þ¤¹¡£ ¤â¤·¤¦¤Þ¤¯¤¤¤«¤Ê¤«¤Ã¤¿¾ì¹ç¡¢ºÆÅÙ¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤ì¤Ç¤â¤Þ¤ÀÆ°ºî¤·¤Æ¤¯¤ì¤Ê¤¤¾ì¹ç¡¢Ã±½ã¤Ê rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤ò »ÈÍÑ¤·¤Æ¤¤¤ë¤«¡¢¤Þ¤¿ Linux ¥«¡¼¥Í¥ë¤Ç ICMP Masqurading ¤òÍ¸ú¤Ë¤·¤Æ ¥³¥ó¥Ñ¥¤¥ë¤·¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ ¤Þ¤¿¥ë¡¼¥ë¥»¥Ã¥È¤ÎÃæ¤Ç enable IP MASQ ¤¬Àµ¤·¤¤³°Éô¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤ò »Ø¤·¤Æ¤¤¤ë¤³¤È¤ò³Î¤á¤Æ¤¯¤À¤µ¤¤¡£ </itemize>  <sect1>DNS ¤ò»È¤ï¤Ê¤¤¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤Î¥Æ¥¹¥È <itemize>  <item><bf>¥¹¥Æ¥Ã¥× 7 - DNS ¤ò»È¤ï¤Ê¤¤¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤Î¥Æ¥¹¥È</bf>  ¤µ¤Æ±ó³Ö¤Î IP ¥¢¥É¥ì¥¹¤Ø¤Î TELNET ¤ò¹Ô¤Ã¤Æ¤ß¤Æ¤¯¤À¤µ¤¤(¤¹¤Ê¤ï¤Á telnet 152.2.254.81) (metalab.unc.edu -¡¡¤³¤Î¥µ¡¼¥Ð¡¼¤Ï¤¹¤´¤¯Ë»¤·¤¤¤Î¤Ç¥í¥°¥¤¥ó¥×¥í¥ó¥×¥È¤¬¸½¤ì¤ë¤Þ¤Ç»þ´Ö¤¬¤«¤«¤ë¤«¤â¤·¤ì¤Þ¤»¤ó)¡£ ¤·¤Ð¤é¤¯¤·¤Æ¥í¥°¥¤¥ó¡¦¥×¥í¥ó¥×¥È¤¬¸½¤ì¤Þ¤·¤¿¤«¡£ ¸½¤ì¤¿¤Ê¤é¡¢TCP ¤Î¥Þ¥¹¥«¥ì¡¼¥É¤Ï¤¦¤Þ¤¯Æ°ºî¤·¤Æ¤¤¤Þ¤¹¡£¤â¤·¸½¤ì¤Ê¤±¤ì¤Ð¡¢198.182.196.55 (www.linux.org) ¤Î¤è¤¦¤Ê TELNET ¤¬»È¤¨¤½¤¦¤ÊÂ¾¤Î¤¤¤¯¤Ä¤«¤Î¥Û¥¹¥È¤Ø TELNET ¤ò¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤ì¤¬¤Ê¤ªÆ¯¤«¤Ê¤¤¾ì¹ç¡¢º£¤Î¤È¤³¤í simple rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤ò»ÈÍÑ¤·¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£¤³¤Î½ÐÎÏ·ë²Ì¤Î°ìÎã¤Ï°Ê²¼¤Î¤è¤¦¤Ë¤Ê¤ë¤Ç¤·¤ç¤¦(TELNET ¤«¤éÈ´¤±¤ë¤Ë¤Ï Control-D ¤ò²¡¤·¤Æ¤¯¤À¤µ¤¤)¡£ <code> masq-client# telnet 152.2.254.81 Trying 152.2.254.81... Connected to 152.2.254.81. Escape character is '^]'. SunOS 5.7 ******************** Welcome to MetaLab.unc.edu ******************* To login to MetaLab as a user, connect to login.metalab.unc.edu. This machine allows no public telnet logins. login: Connection closed by foreign host. </code> </itemize>  <sect1>DNS ¤ò»È¤Ã¤¿¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤Î¥Æ¥¹¥È <itemize>  <item><bf>¥¹¥Æ¥Ã¥× 8 - DNS ¤ò»È¤Ã¤¿ MASQ µ¡Ç½¤Î¥Æ¥¹¥È</bf>  ¤½¤ì¤Ç¤Ï¡¢±ó³Ö¤Î HOSTNAME ¤Ø¤Î TELNET ¤ò»î¤ß¤Æ¤¯¤À¤µ¤¤ (Îã¤¨¤Ð¡¢ "telnet metalab.unc.edu" (152.2.254.81))¡£ ¤³¤ì¤¬Æ°ºî¤¹¤ë¤Ê¤é¡¢DNS ¤â¤¦¤Þ¤¯Æ°ºî¤·¤Æ¤¤¤ë¤³¤È¤ò°ÕÌ£¤·¤Þ¤¹¡£ ¤â¤·¥¹¥Æ¥Ã¥× 6 ¤¬Æ°ºî¤·¤¿¤Î¤Ë¤³¤ì¤¬Æ°ºî¤·¤Ê¤«¤Ã¤¿¾ì¹ç¡¢ ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥¯¥é¥¤¥¢¥ó¥È¡¦¥³¥ó¥Ô¥å¡¼¥¿¤Î DNS ¥µ¡¼¥ÐÀßÄê¤¬ <ref id="Configuring-clients" name="¥¯¥é¥¤¥¢¥ó¥È¤ÎÀßÄê"> ¤Î¾Ï¤ÇÀâÌÀ¤·¤¿¤è¤¦¤ËÀµ¤·¤¯ÀßÄê¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ </itemize>  <sect1>DNS ¤ò»È¤Ã¤¿¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤ÎÄÉ²Ã¥Æ¥¹¥È <itemize>  <item><bf>¥¹¥Æ¥Ã¥× 9 - DNS ¤ò»È¤Ã¤¿¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤ÎÄÉ²Ã¥Æ¥¹¥È</bf>  ºÇ¸å¤Î¥Æ¥¹¥È¤È¤·¤Æ¡¢<bf>¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥¯¥é¥¤¥¢¥ó¥È¡¦¥Þ¥·¥ó</bf>¤Î 1 ¤Ä¤«¤é¤¤¤¯¤Ä¤«¤Î '¥¤¥ó¥¿¡¼¥Í¥Ã¥È' WWW ¥µ¥¤¥È¤ò¥Ö¥é¥¦¥º ¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤·¤Æ¡¢¤½¤ì¤é¤Ë¥¢¥¯¥»¥¹¤Ç¤¤ë¤«¤É¤¦¤«¸«¤Æ¤¯¤À¤µ¤¤¡£ Îã¤¨¤Ð¡¢<htmlurl url="http://metalab.unc.edu/LDP" name="Linux Documentation Project site"> ¤Ø¥¢¥¯¥»¥¹¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ ¤â¤·¤³¤ì¤¬¤Ç¤¤ë¤Ê¤é¡¢¤¹¤Ù¤Æ¤¬¤¦¤Þ¤¯Æ°ºî¤·¤Æ¤¤¤ë!¤È¹Í¤¨¤é¤ì¤Þ¤¹¡£ ¤â¤·Â¾¤Î¥µ¥¤¥È¤Ç¤ÏÌäÂê¤¬Ìµ¤¤¤Î¤Ë¡¢¤¤¤¯¤Ä¤«¤Î¥µ¥¤¥È¤ËÌäÂê¤¬¤¢¤ë¾ì¹ç¡¢ °Ê²¼¤Î¥¹¥Æ¥Ã¥×¤Ë¤¢¤ë²ò·èºö¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£  ¤â¤·¡¢ Linux Documentation Project ¤Î¥Û¡¼¥à¥Ú¡¼¥¸¤¬¸«¤¨¤¿¤Ê¤é <bf>¤ª¤á¤Ç¤È¤¦! ¤¦¤Þ¤¯¤¤¤¤Þ¤·¤¿¤Í! </bf> ¤â¤·¡¢¤½¤Î WWW ¥µ¥¤¥È¤¬Àµ¤·¤¯¸«¤é¤ì¤ë¤Ê¤é¡¢ PING, TELNET, SSH ¤ä¡¢ ´ØÏ¢¤¹¤ë IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥â¥¸¥å¡¼¥ë¤¬¥í¡¼¥É¤µ¤ì¤¿ FTP, Real Audio, IRC DCCs, Quake I/II/III, CuSeeme, VDOLive ¤Ê¤É¡¢Â¾¤ÎÉ¸½àÅª¤Ê ¥Í¥Ã¥È¥ï¡¼¥¯ÀÜÂ³¤ÏÁ´¤Æ¤¦¤Þ¤¯Æ°ºî¤¹¤ë¤Ï¤º¤Ç¤¹¡£ ¤â¤·¡¢FTP, IRC, RealAudio, Quake I/II/III Åù¤¬Æ°ºî¤·¤Ê¤¤¤«¡¢¤¢¤ë¤¤¤Ï Æ°ºî¤¬ÉÔ´°Á´¤Ê¤é¤Ð¡¢ "lsmod" ¤ò¼Â¹Ô¤·¤Æ¡¢¤½¤ì¤é¤ËÉ¬Í×¤Ê ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥â¥¸¥å¡¼¥ë¤¬¥í¡¼¥É¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ ¤Þ¤¿¡¢¥Ç¥Õ¥©¥ë¥È¤Ç¤ÏÁÈ¤ß¹þ¤Þ¤ì¤Ê¤¤¥µ¡¼¥Ó¥¹¤ËÉ¬Í×¤Ê¥Ý¡¼¥È¤Î¥â¥¸¥å¡¼¥ë¤ò ¥í¡¼¥É¤·¤Æ¤¤¤ë¤«¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤â¤·É¬Í×¤Ê¥â¥¸¥å¡¼¥ë¤¬¸«¤Ä¤«¤é¤Ê¤±¤ì¤Ð¡¢¤¢¤Ê¤¿¤Î /etc/rc.d/rc.firewall ¥¹¥¯¥ê¥×¥È¤¬¤½¤ì¤é¤Î¥â¥¸¥å¡¼¥ë¤ò¥í¡¼¥É¤·¤Æ¤¤¤ë ¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤ (¤Ä¤Þ¤ê¡¢IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥â¥¸¥å¡¼¥ë¤òÁÈ¤ß¹þ¤à¤¿¤á¤Ë # ¤ÎÊ¸»ú¤ò ºï½ü¤·¤Þ¤¹)¡£ </itemize>  <sect1>¤½¤ÎÂ¾¤Îµ¡Ç½¡¢ÀÇ½¤Ë´Ø¤¹¤ë»ö¹à <itemize>  <item><bf>¥¹¥Æ¥Ã¥× 10 - ¤½¤ÎÂ¾¤Îµ¡Ç½¡¢ÀÇ½¤Ë´Ø¤¹¤ë»ö¹à</bf>  ¤â¤·¡¢¤¢¤Ê¤¿¤Î¥·¥¹¥Æ¥à¤¬¤³¤ì¤éÁ´¤Æ¤Î¥Æ¥¹¥È¤Ë¹ç³Ê¤·¤¿¤Î¤Ë¡¢ WWW ¥Ö¥é¥¦¥¸¥ó¥°¤ä FTP ¤Þ¤¿¤ÏÂ¾¤Î¥¿¥¤¥×¤Î¥È¥é¥Õ¥£¥Ã¥¯¤¬ ÉÔ°ÂÄê¤Ç¤¢¤ì¤Ð¡¢7 ¾Ï¤Î FAQ ¤ÎÃæ¤Ë¤¢¤ë <ref id="MTU-issues" name="MTU ÌäÂê"> ¤òÆÉ¤à¤³¤È¤ò¤ª¾©¤á¤·¤Þ¤¹¡£ FAQ ¤ÎÃæ¤Ë¤Ï¡¢¤¤¤Þ¤Þ¤ÇÂ¿¤¯¤Î¥æ¡¼¥¶¡¼¤ÎÌò¤ËÎ©¤Ã¤¿¤è¤¦¤Ë¡¢¤¢¤Ê¤¿ ¤ÎÌò¤ËÎ©¤Ä¹àÌÜ¤¬¤¤Ã¤È¤¢¤ë¤³¤È¤Ç¤·¤ç¤¦¡£  </itemize>        <sect> IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ë´ØÏ¢¤·¤¿¤½¤ÎÂ¾¤Î¹àÌÜ¤È¥½¥Õ¥È¥¦¥¨¥¢¥µ¥Ý¡¼¥È   <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ë´Ø·¸¤·¤¿ÌäÂê  TCP/IP ¤ò»È¤Ã¤¿¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¥×¥í¥È¥³¥ë¤Î¤¦¤Á¤Î°ìÉô¤Ë¤Ï¡¢¸½ºß¤Î Linux ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ç¥µ¥Ý¡¼¥È¤µ¤ì¤Æ¤¤¤Ê¤¤¤â¤Î¤â¤¢¤ê¤Þ¤¹¡£ ¤È¤¤¤¦¤Î¤â¡¢¤³¤ì¤é¤Ï°ÅÌÛ¤Î¤¦¤Á¤ËÆÃÄê¤Î¥Ý¡¼¥ÈÈÖ¹æ¤ò»È¤Ã¤Æ¤¤¤¿¤ê¡¢ ¤¢¤ë¤¤¤Ï¤½¤ì¤é¤Î¥Ç¡¼¥¿¥¹¥È¥ê¡¼¥àÃæ¤Ë¡¢ TCP/IP ¥¢¥É¥ì¥¹¤ä¥Ý¡¼¥ÈÈÖ¹æ¤ò °Å¹æ²½¤·¤Æ»Å¹þ¤ó¤Ç¤¤¤¿¤ê¤¹¤ë¤«¤é¤Ç¤¹¡£ ¸å¼Ô¤Î¥×¥í¥È¥³¥ë¤òÆ°¤«¤¹¤¿¤á¤Ë¤ÏÆÃÊÌ¤Ê¥×¥í¥¥·¤« IP MASQ ¥â¥¸¥å¡¼¥ë ¤ò¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Î¥³¡¼¥É¤Ë»Å¹þ¤àÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£   <sect1> ³°Éô¤«¤éÆþ¤Ã¤Æ¤¯¤ë¥µ¡¼¥Ó¥¹  ¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï¤¤¤¯¤Ä¤«¤ÎÎã³°¤ò¤Î¤¾¤¤¤Æ¡¢Linux IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ç¤Ï³°Éô¤«¤éÆþ¤Ã¤Æ¤¯¤ë ¥µ¡¼¥Ó¥¹¤ò¼è¤ê°·¤¦¤³¤È¤¬¤Ç¤¤Þ¤»¤ó¡£  ¤â¤·¡¢¹â¤¤¥ì¥Ù¥ë¤Ç¥»¥¥å¥ê¥Æ¥£¤ò³ÎÊÝ¤¹¤ëÉ¬Í×¤¬¤Ê¤¤¤Ê¤é¡¢Ã±½ã¤Ë IP ¤È¥Ý¡¼¥È¤ò¥Õ¥©¥ï¡¼¥É¤Ê¤ê ¥ê¥À¥¤¥ì¥¯¥È¤¹¤ì¤Ð¤¹¤à¤Ç¤·¤ç¤¦¡£¤ä¤êÊý¤Ï¤¿¤¯¤µ¤ó¤¢¤ê¤Þ¤¹¤¬¡¢ºÇ¤â°ÂÄê¤·¤Æ¤¤¤ë¤Î¤Ï IPPORTFW ¤ò»È¤Ã¤¿¤ä¤ê¤«¤¿¤Ç¤·¤ç¤¦¡£¾ÜºÙ¤Ï¡¢ <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  ¤â¤·¡¢³°Éô¤«¤éÆþ¤Ã¤Æ¤¯¤ëÀÜÂ³¤Ë²¿¤é¤«¤ÎÇ§¾Ú¤òÀßÄê¤·¤¿¤¤¤Ê¤é¡¢TCP-wrapper ¤« Xinetd ¤ò ÀßÄê¤·¤ÆÆÃÄê¤Î IP ¥¢¥É¥ì¥¹¤«¤é¤Î¤ß¤ÎÀÜÂ³¤òµö¤¹¤³¤È¤¬¤Ç¤¤Þ¤¹¡£TIS Firewall Toolkit ¤Ï ¥Ä¡¼¥ë¤ä¾ðÊó¤òÆþ¼ê¤¹¤ë¤Î¤Ë¤è¤¤¾ì½ê¤Ç¤·¤ç¤¦¡£  ¤è¤ê¾ÜºÙ¤Ê¥»¥¥å¥ê¥Æ¥£¾ðÊó¤Ë¤Ä¤¤¤Æ¤Ï¡¢<url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS"> ¤È <htmlurl url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤«¤é¸«¤Ä¤±¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ <label id="Supported Client Software">   <sect1> ¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤ë¥¯¥é¥¤¥¢¥ó¥È¥½¥Õ¥È¥¦¥¨¥¢¤È¤½¤ÎÂ¾¤ÎÀßÄê¾ðÊó <label id="Clients">   <quote><bf>**<url url="http://www.tsmservices.com/masq" name="Linux Masquerade Application list"> ¤Ë¤Ï¡¢¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤òLinux ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ò ÄÌ¤¸¤ÆÆ°¤«¤¹¤¿¤á¤ÎÂ¿¤¯¤Î¾ðÊó¤¬·ÇºÜ¤µ¤ì¤Æ¤¤¤Þ¤¹¡£¤³¤Î¥µ¥¤¥È¤ÏºÇ¶á¤Ë¤Ê¤Ã¤Æ¡¢Steve Srevemeyer ¤Ë¤è¤Ã¤Æ¥Ç¡¼¥¿¥Ù¡¼¥¹¥Ð¥Ã¥¯¥¨¥ó¥É¤ÇÆ°ºî¤¹¤ë¤è¤¦¤Ë½ñ¤²þ¤á¤é¤ì¤Þ¤·¤¿¡£ÁÇÀ²¤é¤·¤¤¾ðÊó¸»¤Ç¤¹¡ª </bf></quote>  °ìÈÌÅª¤Ë¡¢É¸½àÅª¤Ê TCP µÚ¤Ó UDP ¤ò»È¤Ã¤¿¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤Ç¤¢¤ì¤Ð Æ°ºî¤·¤Þ¤¹¡£ ¤â¤·¡¢¥Ò¥ó¥È¤ä¥¢¥É¥Ð¥¤¥¹Åù¤¬¤¢¤ë¤Ê¤é¡¢¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï <url url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£   <sect2> IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÇÆ°ºî¤¹¤ë¥Í¥Ã¥È¥ï¡¼¥¯¥¯¥é¥¤¥¢¥ó¥È  °ìÈÌÅª¤Ê¥¯¥é¥¤¥¢¥ó¥È - <descrip>  <tag>Archie</tag>IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬¥µ¥Ý¡¼¥ÈºÑ¤ß¤ÎÁ´¤Æ¤Î¥×¥é¥Ã¥È¥Õ¥©¡¼¥à ¤ÇÆ°ºî¤¹¤ë¡¢¥Õ¥¡¥¤¥ëÃµº÷¥¯¥é¥¤¥¢¥ó¥È (Ã¢¤·¡¢Á´¤Æ¤Î archie ¥¯¥é¥¤¥¢¥ó¥È ¤¬Æ°ºî¤¹¤ë¤ï¤±¤Ç¤Ï¤Ê¤¤)¡£   <tag>FTP</tag>FTP ÀÜÂ³¤Ë¤Ä¤¤¤Æ¤Ï¡¢ip_masq_ftp.o ¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¤ò»È¤¦¤³¤È¤Ç¡¢Á´¤Æ¤Î¥µ¥Ý¡¼¥ÈºÑ¤ß¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¾å¤Ç Æ°ºî¤¹¤ë¡£ ¡ÚÌõÃí: NAT ´Ä¶¤Î°ìÉô (marked forward Ê»ÍÑ»þ) ¤Ç¤Ï¡¢ ip_masq_ftp ¤¬ Æ°ºî¤·¤Ê¤¤¤³¤È¤¬³ÎÇ§¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ ftp ¥¯¥é¥¤¥¢¥ó¥È¤ò¥Ñ¥Ã¥·¥Ö (PASV) ¥â¡¼¥É¤Çµ¯Æ°¤¹¤ì¤Ð¡¢ ip_masq_ftp.o ¤¬ ¤Ê¤¯¤Æ¤âÂç³µ¤Î ftp ¥µ¡¼¥Ð¤Ø¤ÎÀÜÂ³¤¬²ÄÇ½¤Ç¤¹¡£ PASV ¥â¡¼¥É¤Î¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï¡¢Îã¤¨¤Ð <url url="http://www.rtpro.yamaha.co.jp/RT/FAQ/TCPIP/ftp-passive-mode.html"> ÊÕ¤ê¤¬»²¹Í¤Ë¤Ê¤ë¤«¤È»×¤¤¤Þ¤¹¡£¡Û  <tag>Gopher ¥¯¥é¥¤¥¢¥ó¥È</tag>Á´¤Æ¤Î¥µ¥Ý¡¼¥ÈºÑ¤ß¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÆ°ºî¤¹¤ë¡£  <tag>HTTP</tag>Á´¤Æ¤Î¥µ¥Ý¡¼¥ÈºÑ¤ß¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÆ°ºî¤¹¤ë¡¢Web¥µ¡¼¥Õ¥£¥ó¡£  <tag>IRC</tag>¼ï¡¹¤Î¥µ¥Ý¡¼¥ÈºÑ¤ß¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÆ°ºî¤¹¤ë¡£ ¤Ê¤ª¡¢ DCC ¤Ï ip_masq_irc.o ¥â¥¸¥å¡¼¥ë¤òÆ³Æþ¤¹¤ì¤ÐÆ°ºî¤¹¤ë¡£ ¡ÚÌõÃí: DCC ¤Ë¤Ä¤¤¤Æ¤Ï¡¢ <ref id="rc.firewall-2.2.x" name="Linux 2.2.x ¥«¡¼¥Í¥ë"> ¤ÎÌõÃí¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£¡Û  <tag>NNTP (USENET)</tag>Á´¤Æ¤Î¥µ¥Ý¡¼¥ÈºÑ¤ß¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÆ°ºî¤¹¤ë¡¢ USENET ¥Ë¥å¡¼¥¹¥¯¥é¥¤¥¢¥ó¥È¡£  <tag>PING</tag>¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó¤Î ICMP ¥Þ¥¹¥«¥ì¡¼¥É¤òÍ¸ú¤Ë¤¹¤ë¤³¤È¤Ç¡¢ Á´¤Æ¤Î¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¾å¤ÇÆ°ºî¤¹¤ë¡£  <tag>POP3</tag>¤¹¤Ù¤Æ¤Î¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÆ°ºî¤¹¤ë¡¢ÅÅ»Ò¥á¡¼¥ë¥¯¥é¥¤¥¢¥ó¥È  <tag>SSH</tag>Á´¤Æ¤Î¥µ¥Ý¡¼¥ÈºÑ¤ß¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÆ°ºî¤¹¤ë¡¢ °ÂÁ´¤Ê TELNET/FTP ¥¯¥é¥¤¥¢¥ó¥È¡£  <tag>SMTP</tag>Á´¤Æ¤Î¥µ¥Ý¡¼¥ÈºÑ¤ß¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÆ°ºî¤¹¤ë¡¢ sendmail, qmail, PostFix Åù¤Î¥á¡¼¥ë¥µ¡¼¥Ð¡£   <tag>TELNET</tag>Á´¤Æ¤Î¥µ¥Ý¡¼¥ÈºÑ¤ß¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÆ°ºî¤¹¤ë¡¢ ¥ê¥â¡¼¥È¥»¥Ã¥·¥ç¥ó¡£  <tag>TRACEROUTE</tag>UNIX ¤È Windows ¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÄó¶¡¤µ¤ì¤Æ¤¤¤ë¤¬¡¢ ¤¤¤¯¤Ä¤«¤Î°¡¼ï¤ÏÆ°¤«¤Ê¤¤¤«¤â¤·¤ì¤Ê¤¤¡£  <tag>VRML</tag>Windows (¤¢¤ë¤¤¤Ï¤³¤ì°Ê³°¤Î¥µ¥Ý¡¼¥ÈºÑ¤ß¥×¥é¥Ã¥È¥Õ¥©¡¼¥à) ¤Ë¤ÆÆ°ºî¤¹¤ë¡¢¡Ö¥Ð¡¼¥Á¥ã¥ë¡¦¥ê¥¢¥ê¥Æ¥£¡ÚÌõÃí: ²¾ÁÛ¸½¼Â¡Û¡×µ»½Ñ¤Ë¤è¤ë Web ¥µ¡¼¥Õ¥£¥ó¡£  <tag>WAIS ¥¯¥é¥¤¥¢¥ó¥È</tag>Á´¤Æ¤Î¥µ¥Ý¡¼¥ÈºÑ¤ß¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÆ°ºî¤¹¤ë¡£ </descrip>  ¥Þ¥ë¥Á¥á¥Ç¥£¥¢ µÚ¤Ó ÄÌ¿®¥¯¥é¥¤¥¢¥ó¥È - <descrip>  <tag/Á´¤Æ¤Î H.323 ¥×¥í¥°¥é¥à/ - MS Netmeeting, Intel Internet Phone Beta µÚ¤Ó¤½¤ÎÂ¾¤Î H.323 ¥¢¥×¥ê¥±¡¼¥·¥ç¥ó - ¤³¤ì¤é¤Ë¤Ä¤¤¤Æ¤Ï¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò ·ÐÍ³¤·¤¿ÀÜÂ³¤ÇÆ°¤«¤¹¤¿¤á¤ÎÊýË¡¤¬º£¤Î¤È¤³¤í£²¤ÄÂ¸ºß¤·¤Þ¤¹ -  2.2.x ¥«¡¼¥Í¥ë¤Ç Microsoft Netmeeting v3.x¤òÆ°¤«¤¹¤¿¤á¤Î°ÂÄê¤·¤ÆÆ°ºî¤¹¤ë¥Ù¡¼¥¿ÈÇ¥â¥¸¥å¡¼¥ë¤¬ <htmlurl url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤Þ¤¿¤Ï <url url="http://www.coritel.it/projects/sofia/nat.html" name="http://www.coritel.it/projects/sofia/nat.html"> ¤Ë¤¢¤ê¤Þ¤¹¡£¤³¤ì¤é¤Ï¤Þ¤¿ÊÌ¤Ê¥Ð¡¼¥¸¥ç¥ó ¤È¤·¤Æ¡¢Netmeeting 2.x ¤ò 2.0.x ¥«¡¼¥Í¥ë¤ÇÆ°¤«¤¹¤¿¤á¤Î¥â¥¸¥å¡¼¥ë¤¬Àè¤Î MASQ WWW ¥µ¥¤¥È¤Ë¤¢¤ê¤Þ¤¹¤¬ ¤³¤ì¤Ï Netmeeting v3.x ¤Ï¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤Þ¤»¤ó¡£  ¾¦ÍÑ¥½¥Õ¥È¤Ë¤è¤ëÊÌ¤Î²ò·èÊýË¡¤È¤·¤Æ¤Ï¡¢ <url url="http://www.equival.com.au/phonepatch/index.html" name="Equivalence ¤Î PhonePatch"> ¤Ë¤è¤ë H.323 ¥²¡¼¥È¥¦¥§¥¤¤¬¤¢¤ê¤Þ¤¹¡£  <tag/Alpha Worlds/Windows ¤ÇÆ°ºî¤¹¤ë ¥¯¥é¥¤¥¢¥ó¥È¡¦¥µ¡¼¥ÐÊý¼°¤Î 3D ¥Á¥ã¥Ã¥È¥×¥í¥°¥é¥à  <tag/CU-SeeMe/ Á´¤Æ¤Î¥µ¥Ý¡¼¥ÈºÑ¤ß¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÆ°ºî¤·¤Þ¤¹¤¬¡¢ ip_masq_cuseeme ¤òÁÈ¤ß¹þ¤à¤³¤È¤¬É¬Í×¤Ç¤¹¡£ ¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï <ref id="CuSeeme"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <tag/ICQ/ Äó¶¡¤µ¤ì¤¿¤¹¤Ù¤Æ¤Î¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¤ÇÆ°ºî¡£ Linux ¥«¡¼¥Í¥ë¤ò IPPORTFW ¥µ¥Ý¡¼¥È¤òÍ¸ú¤Ë¤·¤Æ¥³¥ó¥Ñ¥¤¥ë¤·¡¢ ICQ ¼«¿È¤Ï Èó SOCKS ¥×¥í¥¥·¤ÎÆâÉô¤ÇÆ°ºî¤¹¤ë¤è¤¦¤ËÀßÄê¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ ÀßÄê¤ÎÁ´¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï <ref id="ICQ"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <tag/Internet Phone 3.2/Windows ¤ÇÆ°ºî¤¹¤ë ¥Ô¥¢¡¦¥Ä¡¼¡¦¥Ô¥¢¤Î²»À¼¤Ë¤è¤ë ÄÌ¿®¤ò²ÄÇ½¤È¤¹¤ë¤â¤Î¤Ç¤¹¡£ ¤¢¤Ê¤¿¤ÎÂ¦¤«¤éÁê¼ê¤ò¸Æ¤Ó½Ð¤»¤ÐÄÌÏÃ¤¬¤Ç¤¤Þ¤¹¤¬¡¢Â¾¤ÎÊý¤¬¤¢¤Ê¤¿¤ò¸Æ¤Ó½Ð¤¹¤Ë¤Ï ÆÃÄê¤Î¥Ý¡¼¥È¤ËÂÐ¤¹¤ëÅ¾Á÷¤òÀßÄê¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ ¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <tag/Internet Wave Player/Windows ¤ÇÆ°ºî¤¹¤ë¡¢¥Í¥Ã¥È¥ï¡¼¥¯¡¦¥¹¥È¥ê¡¼¥à¡¦¥ª¡¼¥Ç¥£¥ª¡¦¥×¥í¥°¥é¥à  <tag/Powwow/Windows ¤ÇÆ°ºî¤¹¤ë¡¢¥Ô¥¢¡¦¥Ä¡¼¡¦¥Ô¥¢¥¿¥¤¥×¤ÎÊ¸»ú¤È²»À¼¤ò Ê»ÍÑ¤Ç¤¤ë¡Ö¥Û¥ï¥¤¥È¥Ü¡¼¥É¡×ÄÌ¿®¥×¥í¥°¥é¥à¤Ç¤¹¡£ ¤¢¤Ê¤¿¤ÎÂ¦¤«¤éÁê¼ê¤ò¸Æ¤Ó½Ð¤»¤ÐÄÌÏÃ¤¬¤Ç¤¤Þ¤¹¤¬¡¢Â¾¤ÎÊý¤¬¤¢¤Ê¤¿¤ò¸Æ¤Ó½Ð¤¹¤Ë¤Ï ÆÃÄê¤Î¥Ý¡¼¥È¤ËÂÐ¤¹¤ëÅ¾Á÷¤òÀßÄê¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ ¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <tag/Real Audio Player/Windows ¤ÇÆ°ºî¤¹¤ë¡¢¥Í¥Ã¥È¥ï¡¼¥¯¡¦¥¹¥È¥ê¡¼¥ß¥ó¥°¡¦ ¥ª¡¼¥Ç¥£¥ª¡¦¥×¥í¥°¥é¥à¤Ç¤¹¡£ ip_masq_raudio UDP ¥â¥¸¥å¡¼¥ë¤ò»È¤¨¤Ð¡¢¹âÉÊ°Ì¤ÎºÆÀ¸¤¬²ÄÇ½¤Ç¤¹¡£  <tag/True Speech Player 1.1b/Windows ¤ÇÆ°ºî¤¹¤ë¥¹¥È¥ê¡¼¥ß¥ó¥°¡¦¥ª¡¼¥Ç¥£¥ª¡¦¥×¥í¥°¥é¥à¤Ç¤¹¡£   <tag/VDOLive/Windows ¤ÇÆ°ºî¤·¤Þ¤¹¡£ ip_masq_vdolive ¥â¥¸¥å¡¼¥ë¤ò»È¤¨¤Ð²ÄÇ½¤Ç¤¹¡£ ¡ÚÌõÃí: ¸¶Ê¸¤Ï ip_masq_vdolive patch ¤È¤Ê¤Ã¤Æ¤¤¤Þ¤¹¤¬¡¢¼ÂºÝ¤Ï ¥â¥¸¥å¡¼¥ë¤Ç¤¹¡£¡Û  <tag/Worlds Chat 0.9a/Windows ¤ÇÆ°ºî¤¹¤ë¡¢¥¯¥é¥¤¥¢¥ó¥È¡¦¥µ¡¼¥ÐÊý¼°¤Î 3D ¥Á¥ã¥Ã¥È¥×¥í¥°¥é¥à¤Ç¤¹¡£ </descrip> <label id="Game-Clients">  ¥Í¥Ã¥È¥ï¡¼¥¯ÂÐ±þ¥²¡¼¥à¤ÎÎà - LooseUDP ¥Ñ¥Ã¥Á¤Ë¤Ä¤¤¤Æ¤Î¾ÜºÙ¤Ï <ref id="LooseUDP"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ <descrip>  <tag>Battle.net</tag> ¥²¡¼¥à¥Þ¥·¥ó¤ËÂÐ¤·¤Æ¡¢ TCP ¥Ý¡¼¥È 116 ¤È 118¡¢ ¹¹¤Ë UDP ¥Ý¡¼¥È 6112 ¤ò IPPORTFW ¤Ë¤ÆÍ¸ú¤Ë¤¹¤ë¤³¤È¤ÇÆ°ºî¤·¤Þ¤¹¡£ ¾ÜºÙ¤Ï <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ FSGS ¤È Bnetd ¥µ¡¼¥Ð¤Ï¤Þ¤À NAT ´Ä¶¤Ç¤¦¤Þ¤¯Æ°¤¯¤è¤¦¤Ë½ñ¤Ä¾¤µ¤ì¤Æ ¤¤¤Þ¤»¤ó¤Î¤Ç¡¢ IPPORTFW ¤¬É¬Í×¤È¤Ê¤ë¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£  ¡ÚÌõÃí: FSGS (Free Standard Game Server) ¤Ï¡¢¥Ö¥ê¥¶¡¼¥É¼ÒÀ½¤Î ¥²¡¼¥à¥½¥Õ¥È¤ò¥Í¥Ã¥È¥ï¡¼¥¯ÂÐÀï»þ¤Ë»ÈÍÑ¤¹¤ë battle.net ¤ò¼çºÅ¤¹¤ë ¥µ¡¼¥Ð¥½¥Õ¥È¥¦¥§¥¢¤Ç¤¹¡£ ¾ÜºÙ¤Ï¡¢ <url url="http://www.fsgs.com/" name="Net-Games ...are you ready to play?"> µÚ¤Ó <url url="http://b-ring.acc.ne.jp/" name="B-Ring"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤Ê¤ª¡¢Ìõ¼Ô¤¬³ÎÇ§¤·¤¿¸Â¤ê¤Ç¤Ï¡¢ B-Ring web ¥µ¥¤¥È¤Î¥È¥Ã¥×¥Ú¡¼¥¸¤Ë ¥¢¥¯¥»¥¹¤¹¤ë¤Ë¤Ï¡¢ ipchains ¤Ç tcp ¥Ý¡¼¥È 11000 ÈÖ¤ò REJECT ¤Ë ÀßÄê¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¤Ç¤·¤¿¡£ bnetd ¤Ï¡¢ Starcraft Battle.net server ¤Î¥¨¥ß¥å¥ì¡¼¥¿¤Ç¡¢ GPL ¤Ë½¾¤Ã¤¿¥½¡¼¥¹¤¬¼«Í³¤ËÆþ¼ê¤Ç¤¤ë¤À¤±¤Ç¤Ê¤¯¡¢ Linux, Irix ¤Î ¥Ð¥¤¥Ê¥ê¤âÇÛÉÛ¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ ¾ÜºÙ¤Ï¡¢ <url url="http://www.bnetd.org/"> Åù¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£¡Û  <tag>BattleZone 1.4</tag> LooseUDP ¥Ñ¥Ã¥ÁµÚ¤Ó NAT ´Ä¶¤Ç¤â¤¦¤Þ¤¯Æ°¤¯ <htmlurl url="http://us4.alink.activision.com/tmp/nat/" name=".DLLs from Activision"> ¤¬É¬Í×¤Ç¤¹¡£  <tag>Dark Reign 1.4</tag> LooseUDP ¥Ñ¥Ã¥Á¤òÅ¬ÍÑ¤¹¤ë¤«¡¢¤Þ¤¿¤Ï ¥²¡¼¥à¥Þ¥·¥ó¤ËÂÐ¤·¤ÆTCP ¥Ý¡¼¥È 116¤È118 ¡¢¹¹¤Ë UDP ¥Ý¡¼¥È 6112 ¤Ë ÂÐ¤·¤Æ IPPORTFW ¤òÍ¸ú¤Ë¤¹¤ë¤³¤È¤¬É¬Í×¤Ç¤¹¡£ ¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <tag>Diablo</tag> LooseUDP ¥Ñ¥Ã¥Á¤Þ¤¿¤Ï ¥²¡¼¥à¥Þ¥·¥ó¤ËÂÐ¤·¤Æ TCP ¥Ý¡¼¥È 116¤È118¡¢¹¹¤Ë UDP ¥Ý¡¼¥È 6112 ¤ËÂÐ¤·¤Æ IPPORTFW ¤ò Í¸ú¤Ë¤¹¤ë¤³¤È¤¬É¬Í×¤Ç¤¹¡£ ¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó¤Ç¤Ï TCP ¥Ý¡¼¥È 6112 ¤È UDP ¥Ý¡¼¥È 6112 ¤À¤±¤¬ »È¤ï¤ì¤Æ¤¤¤Þ¤¹¡£ ¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï¡¢ <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <tag>Heavy Gear 2</tag> LooseUDP ¥Ñ¥Ã¥Á¤Þ¤¿¤Ï ¥²¡¼¥à¥Þ¥·¥ó¤ËÂÐ¤·¤Æ TCP ¥Ý¡¼¥È 116¤È118¡¢¹¹¤Ë UDP ¥Ý¡¼¥È 6112 ¤ËÂÐ¤·¤Æ IPPORTFW ¤ò Í¸ú¤Ë¤¹¤ë¤³¤È¤¬É¬Í×¤Ç¤¹¡£ ¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <tag>Quake I/II/III</tag> ¤½¤Î¤Þ¤Þ¤Ç¤âÆ°ºî¤·¤Þ¤¹¤¬¡¢MASQ ¤µ¤ì¤¿ linux ¥Ü¥Ã¥¯¥¹¤è¤êÆâÂ¦¤Î¥Í¥Ã¥È¥ï¡¼¥¯¤ËÊ£¿ô¤Î Quake I/II/III ¥×¥ì¥¤¥ä¡¼¤¬ µï¤ë¾ì¹ç¤Ï¡¢ ip_masq_quake ¤ò»È¤¦¤³¤È¤¬É¬Í×¤È¤Ê¤ê¤Þ¤¹¡£ ¤Þ¤¿¡¢¤³¤Î¥â¥¸¥å¡¼¥ë¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï Quake I ¤È QuakeWorld ¤ò¥µ¥Ý¡¼¥È¤¹¤ë ¤è¤¦¤Ë¤·¤«¤Ê¤Ã¤Æ¤¤¤Þ¤»¤ó¡£ ¤â¤·¡¢Quake II °Ê¹ß¤ä¡¢¤¢¤ë¤¤¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤Ï¤Ê¤¤¥µ¡¼¥Ð¤Î¥Ý¡¼¥ÈÈÖ¹æ¤ò»È¤¦ É¬Í×¤¬¤¢¤ë¤Ê¤é¡¢<ref id="rc.firewall-2.0.x"> ¤ä <ref id="rc.firewall-2.2.x"> ¥ë¡¼¥ë¥»¥Ã¥È¤Î¥â¥¸¥å¡¼¥ë¤ÎÁÈ¤ß¹þ¤ß¤Î¾Ï¤ò »²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <tag>StarCraft</tag> LooseUDP ¥Ñ¥Ã¥Á¤È ÆâÉô¤Î¥²¡¼¥à¥Þ¥·¥ó¤ËÂÐ¤¹¤ë TCP ¤È UDP ¥Ý¡¼¥È 6112 ¤ò IPPORTFW ¤·¤Æ¤ä¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï¡¢ <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <tag>WorldCraft</tag> LooseUDP ¥Ñ¥Ã¥Á¤ò»È¤¨¤ÐÆ°ºî¤·¤Þ¤¹¡£  </descrip>  ¤½¤ÎÂ¾¤Î¥¯¥é¥¤¥¢¥ó¥È - <descrip>  <tag/Linux net-acct ¥Ñ¥Ã¥±¡¼¥¸/Linux¤ÇÆ°ºî¤¹¤ë¥Í¥Ã¥È¥ï¡¼¥¯´ÉÍý¥¢¥«¥¦¥ó¥È¡¦¥Ñ¥Ã¥±¡¼¥¸  <tag/NCSA Telnet 2.3.08/DOS¤ÇÆ°ºî¤¹¤ë telnet, ftp, ping ¤Ê¤É¤ò´Þ¤à¥½¥Õ¥È¥¦¥¨¥¢¥»¥Ã¥È  <tag/PC-anywhere for Windows /MS-Windows ¤ÇÆ°ºî¤¹¤ë¡¢TCP/IP ¥×¥í¥È¥³¥ë¤ò ÄÌ¤¸¤Æ¡¢±ó³ÖÃÏ¤Ë¤¢¤ë PC ¤òÁàºî¤¹¤ë¤¿¤á¤Î¥×¥í¥°¥é¥à¡£ ¥¯¥é¥¤¥¢¥ó¥È¤Ç¤Ï¤Ê¤¯¥Û¥¹¥È¤È¤·¤ÆÆ°ºî¤µ¤»¤ë¾ì¹ç¤Ï¡¢ÆÃÊÌ¤Ê¥Ý¡¼¥È¡¦ ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°ÀßÄê¤¬¤Ê¤±¤ì¤ÐÆ°ºî¤·¤Þ¤»¤ó¡£ ¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï¡¢ <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£   <tag/Socket Watch/NTP(¥Í¥Ã¥È¥ï¡¼¥¯·ÐÍ³¤Î»þ¹ïÀ©¸æ¥×¥í¥È¥³¥ë)¤ò¤Ä¤«¤Ã¤Æ¤¤¤ë </descrip>   <sect2> IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ç´°Á´¤Ë¤Ï¥µ¥Ý¡¼¥È¤µ¤ì¤Æ¤¤¤Ê¤¤¤â¤Î - <descrip>  <tag/Intel Streaming Media Viewer Beta 1/ ¥µ¡¼¥Ð¤ËÀÜÂ³¤Ç¤¤Ê¤¤  <tag/Netscape CoolTalk/ ÄÌÏÃÁê¼ê¤ËÀÜÂ³¤Ç¤¤Ê¤¤  <tag/WebPhone/ º£¤Î¤È¤³¤íÆ°ºî¤·¤Æ¤¤¤Ê¤¤(Áê¼ê¤Î»ØÄêÊýË¡¤ËÉÔÅ¬ÀÚ¤ÊÁ°Äó¤òÍÑ¤¤¤Æ¤¤¤ë)  </descrip>   <sect1> ¤è¤ê¶¯ÎÏ¤Ê IP ¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë (IPFWADM) ¥ë¡¼¥ë¥»¥Ã¥È <label id="Strong-IPFWADM-Rulesets">  ¤³¤Î¾Ï¤Ç¤Ï¡¢¥«¡¼¥Í¥ë 2.0.x ¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥Ä¡¼¥ë¤Ç¤¢¤ë IPFWADM ¤ò »È¤¦ºÝ¤Î¡¢¤è¤ê¾ÜºÙ¤Ê¥¬¥¤¥É¤ò¼¨¤·¤Þ¤¹¡£ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Ë¤Ä¤¤¤Æ¤Ï¸å½Ò¤·¤Þ¤¹¡£   ¤³¤ÎÎã¤Ï¡¢¸ÇÄêÅª¤Ë¥¢¥É¥ì¥¹¤¬Í¿¤¨¤é¤ì¤ë¤è¤¦¤Ê PPP ÀÜÂ³¤ÎÇØ¸å¤Ë¤¢¤ë ¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¤È¥Þ¥¹¥«¥ì¡¼¥É¤Ç¤¹ (Æ°Åª¤Ë¥¢¥É¥ì¥¹¤¬Í¿¤¨¤é¤ì¤ë PPP ¤Î »ÈÍÑË¡¤Ë¤Ä¤¤¤Æ¤Ï¡¢´Þ¤Þ¤ì¤Æ¤Ï¤¤¤Þ¤¹¤¬Ìµ¸ú¤Ë¤·¤Æ¤¤¤Þ¤¹)¡£ ¿®Íê¤Ç¤¤ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Ï 192.168.0.1 ¤Ç¤¢¤ê¡¢ PPP ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î ¥¢¥É¥ì¥¹¤Ï¡Ö°¤¤ÅÛ¤é¡×¤«¤é¼é¤ë¤¿¤á¤ËÊÑ¹¹¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ ½ÐÆþ¤ê¤½¤ì¤¾¤ì¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Ï¤½¤ì¤¾¤ìÊÌ¤Ë¥ê¥¹¥È¤·¤Æ¤¤¤Þ¤¹¤¬¡¢¤³¤ì¤Ï ¥ë¡¼¥Æ¥£¥ó¥°¤ä¥Þ¥¹¥«¥ì¡¼¥É¤ò¤ï¤«¤ê¤ä¤¹¤¯¤¹¤ë°Ê³°¤ËIP ¥¹¥×¡¼¥Õ¥£¥ó¥° ¡ÚÌõÃí: µ¶Áõ¡Û¤ä¡¢ÉÔÀµ¤Ê¥ë¡¼¥Æ¥£¥ó¥°¤ò¸¡½Ð¤·¤ä¤¹¤¯¤¹¤ë¤¿¤á¤Î¤â¤Î¤Ç¤â ¤¢¤ê¤Þ¤¹¡£ ÌÀ³Î¤Ëµö²Ä¤µ¤ì¤Æ¤¤¤Ê¤¤¤â¤Î¤Ï<bf>¶Ø»ß</bf>¤Ç¤¹ (¼ÂºÝ¤Ë¤ÏµñÈÝ¤µ¤ì¤Þ¤¹)¡£ ¤â¤·¡¢¤¢¤Ê¤¿¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É BOX ¤¬¡¢¤³¤Î rc.firewall ¥¹¥¯¥ê¥×¥È¤ò Æþ¤ì¤¿¤¢¤È¤Ç¤Þ¤È¤â¤ËÆ°¤«¤Ê¤¯¤Ê¤Ã¤¿¤È¤·¤¿¤é¡¢ /var/log/messages ¤¢¤ë¤¤¤Ï /var/adm/messages ¤Ë¤¢¤ë SYSLOG ¥Õ¥¡¥¤¥ë¤Ë²¿¤«¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë´Ø·¸¤Î ¥¨¥é¡¼¤¬¤Ê¤¤¤«³ÎÇ§¤·¤Æ¡¢ÀßÄê¤¬´Ö°ã¤Ã¤Æ¤¤¤Ê¤¤¤«¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£  PPP¤ä¥±¡¼¥Ö¥ë¥â¥Ç¥à¤Ê¤É¤ò»È¤Ã¤¿¡¢IPFWADM ¤Ë¤è¤ë¤â¤Ã¤È¶¯¸Ç¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¼ÂÍÑÅª¤ÊÎã¤Ë¤Ä¤¤¤Æ¤Ï <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - Section 10"> ¤ä <htmlurl url="http://www.greatcircle.com/" name="GreatCircle's Firewall WWW page"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£   <bf>Ãí°Õ - </bf> ¤â¤·¡¢ TCP/IP ¥¢¥É¥ì¥¹¤¬ PPP, ADSL, ¥±¡¼¥Ö¥ë¥â¥Ç¥à¤Ê¤É¤ò ·ÐÍ³¤·¤Æ ISP ¤«¤éÆ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë¾ì¹ç¤Ë¤Ï¡¢¤³¤Î¶¯¸Ç¤Ê¥ë¡¼¥ë¥»¥Ã¥È¤ò <bf>µ¯Æ°»þ¤ËÀßÄê¤¹¤ë¤³¤È¤Ï¤Ç¤¤Þ¤»¤ó</bf>¡£ ¤³¤Î¤è¤¦¤Ê¾ì¹ç¤Ë¤Ï¡¢ IP ¥¢¥É¥ì¥¹¤¬³ä¤êÅö¤Æ¤é¤ì¤ëÅÙ¤Ë¤³¤Î ¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¡¦¥ë¡¼¥ë¥»¥Ã¥È¤òºÆÅÙÆÉ¤ß¹þ¤Þ¤»¤ë¤«¡¢¤¢¤ë¤¤¤Ï /ec/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤ò¤â¤Ã¤È¥¤¥ó¥Æ¥ê¥¸¥§¥ó¥È¤Ëºî¤ëÉ¬Í×¤¬ ¤¢¤ê¤Þ¤¹¡£ PPP¥æ¡¼¥¶¤¬¤³¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÅ¬ÍÑ¤¹¤ë¾ì¹ç¤Ë¤Ï¡¢°Ê¹ß¤Ë¼¨¤¹ "Dynamic PPP IP fetch" ¤È½ñ¤«¤ì¤¿ÉôÊ¬¤Î¥³¥á¥ó¥È¤òÃí°Õ¿¼¤¯Å¬ÀÚ¤Ë ³°¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤Þ¤¿¡¢¶¯¸Ç¤Ê¥ë¡¼¥ë¥»¥Ã¥ÈµÚ¤ÓÆ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤Ë¤Ä¤¤¤Æ¤Î ¤â¤Ã¤È¾Ü¤·¤¤²òÀâ¤Ï¡¢<url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - 10¾Ï"> ¤Ë¤¢¤ê¤Þ¤¹¡£  <bf>¤Þ¤¿¡¢GUI ¥Ù¡¼¥¹¤Ç¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ëÀßÄê¤òÀ¸À®¤¹¤ë¤è¤¦¤Ê¥Ä¡¼¥ë¤¬ ¤¤¤¯¤Ä¤«Â¸ºß¤·¤Þ¤¹¡£ ¾ÜºÙ¤Ï¡¢ <ref id="FAQ" name="¤è¤¯¤¢¤ë¼ÁÌä (FAQ)"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£</bf>  ºÇ¸å¤Ë¡¢¤â¤·ÀÅÅª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤ò»È¤Ã¤Æ¤¤¤ë¤Ê¤é¡¢°Ê²¼¤ÎÎã¤Î "ppp_ip="your.static.PPP.address"" ¤È¤Ê¤Ã¤Æ¤¤¤ëÉôÊ¬¤ò¤¢¤Ê¤¿¤Î IP ¥¢¥É¥ì¥¹¤Ë½ñ¤´¹¤¨¤Æ¤¯¤À¤µ¤¤¡£ ¡ÚÌõÃí: °ìÈÌÅª¤Ê¥×¥í¥Ð¥¤¥À·ÐÍ³¤Î PPP ÀÜÂ³¤Î¾ì¹ç¡¢¥×¥í¥Ð¥¤¥ÀÂ¦¤«¤é IP ¥¢¥É¥ì¥¹¤¬Æ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤Þ¤¹¤Î¤Ç¡¢ËØ¤É¤Î¸Ä¿Í¥æ¡¼¥¶¤Ï¤³¤Î¹Ô¤Ë IP ¥¢¥É¥ì¥¹¤ò½ñ¤Æþ¤ì¤ëÉ¬Í×¤Ï¤¢¤ê¤Þ¤»¤ó¡£¡Û  ---------------------------------------------------------------- <label id="stronger-rc.firewall-2.0.x">  <![ %codes; CDATA [ <verb> #!/bin/sh #  # /etc/rc.d/rc.firewall: IPFWADM ¤ò»È¤Ã¤¿¤ä¤ä¶¯¸Ç¤Ê¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¡¦¥ë¡¼¥ë¥»¥Ã¥È # PATH=/sbin:/bin:/usr/sbin:/usr/bin  # ¥Æ¥¹¥ÈÍÑ: ¤·¤Ð¤é¤¯ÂÔµ¡¤·¤Æ¤«¤é¤¹¤Ù¤Æ¤Î¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¥ë¡¼¥ë¤ò¥¯¥ê¥¢¤¹¤ë¡£ # 10Ê¬¸å¤Ë¤¹¤Ù¤Æ¤ÎÀßÄê¤ò°ìÃ¶²ò½ü¤¹¤ëÉ¬Í×¤¬¤¢¤ë¤Ê¤é¡¢°Ê²¼¤Î¥³¥á¥ó¥È¤ò²ò½ü¤·¤Æ¤¯¤À¤µ¤¤¡£ # (sleep 600; \ # ipfwadm -I -f; \ # ipfwadm -I -p accept; \ # ipfwadm -O -f; \ # ipfwadm -O -p accept; \ # ipfwadm -F -f; \ # ipfwadm -F -p accept; \ # ) &  # É¬Í×¤Ê¤¹¤Ù¤Æ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤ò¥í¡¼¥É¤¹¤ë #  # Ãí°Õ: É¬Í×¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤À¤±¤ò¥í¡¼¥É¤·¤Þ¤¹¡£¤¹¤Ù¤Æ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤¬ # °Ê²¼¤Ëµ½Ò¤µ¤ì¤Æ¤¤¤Þ¤¹¤¬¡¢¥í¡¼¥É¤µ¤ì¤Ê¤¤¤è¤¦¤Ë¥³¥á¥ó¥È¤È¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£  # ¥â¥¸¥å¡¼¥ë¤òºÇ½é¤Ë¥í¡¼¥É¤¹¤ë»þ¤Ë¤Þ¤ºÉ¬Í× # /sbin/depmod -a  # PORT Êý¼°¤ò»È¤Ã¤ÆFTP ¥Õ¥¡¥¤¥ëÅ¾Á÷¤Ë¤ª¤±¤ëÅ¬ÀÚ¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹ # /sbin/modprobe ip_masq_ftp  # UDP ¥×¥í¥È¥³¥ë¤ò·ÐÍ³¤·¤¿¡¢RealAudio ¤Î¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹¡£¤³¤Î¥â¥¸¥å¡¼¥ë¤¬¤Ê¤¯¤Æ¤â # RealAudio ¤Ï TCP ¥â¡¼¥É¤ÇÆ°ºî¤·¤Þ¤¹¤¬¡¢²»¼Á¤ÏÄã²¼¤·¤Þ¤¹¡£ # #/sbin/modprobe ip_masq_raudio  # IRC DCC ¥Õ¥¡¥¤¥ëÅ¾Á÷¤Î¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹ # #/sbin/modprobe ip_masq_irc  # °Ê²¼¤Î»ØÄê¤Ë¤è¤Ã¤Æ Quake ¤È QuakeWorld ¤ò¥Ç¥Õ¥©¥ë¥È¤ÇÄó¶¡¤·¤Þ¤¹¡£ # ¤³¤Î¥â¥¸¥å¡¼¥ë¤Ï Linux ¤Î ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤«¤éÆâÂ¦¤Î¥æ¡¼¥¶¤¬ # Ê£¿ôÂ¸ºß¤¹¤ë¾ì¹ç¤Î¤¿¤á¤Î¤â¤Î¤Ç¤¹¡£ # ¤â¤·¡¢Quake I, II, ¤¢¤ë¤¤¤Ï III ¤ò»È¤¤¤¿¤¤¤Ê¤é¤Ð¡¢£²ÈÖÌÜ¤ÎÎã¤ò # »È¤Ã¤Æ¤¯¤À¤µ¤¤¡£ #  # Ãí°Õ: ¤â¤·¡¢QUAKE ¥â¥¸¥å¡¼¥ë¤Î¥í¡¼¥É»þ¤Ë¥¨¥é¡¼¤¬½Ð¤¿¾ì¹ç¤Ï¡¢¸Å¤¤¥Ð¥°¤Î¤¢¤ë¥«¡¼¥Í¥ë¤¬Æ°¤¤¤Æ¤¤¤Þ¤¹¡£ # ----- ¤½¤Î¾ì¹ç¤Ï¤è¤ê¿·¤·¤¤¥«¡¼¥Í¥ë¤ËÃÖ¤´¹¤¨¤Æ¤¯¤À¤µ¤¤¡£ # #Quake I / QuakeWorld (ports 26000 and 27000) #/sbin/modprobe ip_masq_quake # #Quake I/II/III / QuakeWorld (ports 26000, 27000, 27910, 27960) #/sbin/modprobe ip_masq_quake 26000,27000,27910,27960  # CuSeeme ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥¨¥¢¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡ # #/sbin/modprobe ip_masq_cuseeme  # VDO-Live ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥¨¥¢¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡ # #/sbin/modprobe ip_masq_vdolive  #Èó¾ï¤Ë½ÅÍ×: IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤ÏÌµ¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤Î¤Ç¡¢Í¸ú¤Ë¤·¤Þ¤¹¡£ # # Redhat ¥æ¡¼¥¶¤Î¾ì¹ç¤Ï¡¢/etc/sysconfig/network ¤Î¥ª¥×¥·¥ç¥ó»ØÄê¹Ô¤ò # # FORWARD_IPV4=false  # ¤«¤é # FORWARD_IPV4=true # ¤ËÊÑ¹¹¤·¤Æ¤¯¤À¤µ¤¤¡£ # echo "1" > /proc/sys/net/ipv4/ip_forward  #Èó¾ï¤Ë½ÅÍ×: 2.2.x ¥«¡¼¥Í¥ë¤Ç¤Ï IP ¥Ç¥Õ¥é¥°¥á¥ó¥Æ¡¼¥·¥ç¥ó¤Î¥µ¥Ý¡¼¥È¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤ÏÌµ¸ú¤Ç¤¹¡£ # # ¥³¥ó¥Ñ¥¤¥ë»þ¤Î»ØÄê¤Ë¤è¤ë¤â¤Î¤Ç¤¹¤¬¡¢2.2.12 ¥«¡¼¥Í¥ë°Ê¹ß¤ÏÊÑ¹¹¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ # echo "1" > /proc/sys/net/ipv4/ip_always_defrag  # Æ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤¹¤ë¥æ¡¼¥¶¸þ¤± - # # IP ¥¢¥É¥ì¥¹¤ò SLIP, PPP, DHCP ¤Ê¤É¤«¤éÆ°Åª¤Ë¼èÆÀ¤¹¤ë¾ì¹ç¤Ï¡¢¼¡¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¡¢IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÇÆ°Åª IP ¥¢¥É¥ì¥¹¤ÎÁàºî¤òµö²Ä¤·¡¢Diald¤äÆ±ÍÍ¤Ê¥×¥í¥°¥é¥à¤Î # »ÈÍÑ¤ò¤è¤êÍÆ°×¤Ë¤¹¤ë¤â¤Î¤Ç¤¹¡£ # #echo "1" > /proc/sys/net/ipv4/ip_dynaddr  # ¤¢¤Ê¤¿¤ÎÀÅÅª¤Ê IP ¥¢¥É¥ì¥¹¤ò°Ê²¼¤Ë»ØÄê¤·¤Þ¤¹ #  # Æ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤¹¤ë¤Ê¤é¡¢¿·¤·¤¤ IP ¥¢¥É¥ì¥¹¤¬³ä¤êÅö¤Æ¤é¤ì¤ë¤¿¤Ó¤ËÅ¬ÍÑ # ¤¹¤ë¤è¤¦¤Ë¡¢¥ë¡¼¥ë¥»¥Ã¥È¤ò½ñ¤´¹¤¨¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£¤½¤Î¤¿¤á¤Ë¤Ï¡¢¡¢°Ê²¼¤Î¤è¤¦¤Ê°ì¹Ô¤Î¥¹¥¯¥ê¥×¥È¤ò # Í¸ú¤Ë¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£¡Ê¥¹¥¯¥ê¥×¥ÈÎãÆâ¤Î°ì½Å°úÍÑÉä¤ÈÆó½Å°úÍÑÉä¤Î°ã¤¤¤Ï°ÕÌ£¤ò»ý¤Á¤Þ¤¹¤Î¤ÇÃí°Õ¡Ë # #  # DHCP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # --------------------- # TCP/IP ¥¢¥É¥ì¥¹¤ò DHCP ¤«¤é¼èÆÀ¤¹¤ë¾ì¹ç¤Ï¡¢ ppp ¥»¥¯¥·¥ç¥ó¤Î²¼¤Ë¤¢¤ë¡¢ # "#" ¤Ç¥³¥á¥ó¥È¥¢¥¦¥È¤µ¤ì¤¿ÉôÊ¬¤òÍ¸ú¤Ë¤·¡¢"ppp0" ¤È¤¢¤ëÉôÊ¬¤ò¡¢ # ¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³ÍÑ¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ÎÌ¾Á°¤ËÃÖ¤´¹¤¨¤Ê¤±¤ì¤Ð # ¤Ê¤ê¤Þ¤»¤ó (Îã¤¨¤Ð¡¢ eth0 ¤ä eth1 Åù) ¡£ # DHCP ¤Ï³ä¤êÅö¤Æ¤¿ IP ¥¢¥É¥ì¥¹¤ò¿ï»þÊÑ¹¹¤¹¤ë¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¤³¤ÎÊÑ¹¹¤òÀµ¤·¤¯È¿±Ç¤µ¤»¤ë¤Ë¤Ï¡¢ DHCP ¥ê¡¼¥¹¤¬¹¹¿·¤µ¤ì¤ëÅÙËè¤Ë¡¢ # DHCP ¥¯¥é¥¤¥¢¥ó¥È¤òºÆÅÙ¼Â¹Ô¤·¤Æ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥ë¡¼¥ë¥»¥Ã¥È¤òÈ¿±Ç # ¤µ¤»¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ #  # Ãí°Õ #1 - µì¥Ð¡¼¥¸¥ç¥ó¤Î "pump" ¤Î¤è¤¦¤Ê (¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó¤Ç¤Ï # ÌäÂêÅÀ¤Ï½¤Àµ¤µ¤ì¤Æ¤¤¤Þ¤¹) DHCP ¥¯¥é¥¤¥¢¥ó¥È¤Ë¤è¤Ã¤Æ¤Ï¡¢ # IP ¥¢¥É¥ì¥¹¥ê¡¼¥¹¹¹¿·¸å¤Ë¥¹¥¯¥ê¥×¥È¤ò¼Â¹Ô¤¹¤ë¤³¤È¤¬ # ¤Ç¤¤Ê¤¤¤â¤Î¤¬¤¢¤ê¤Þ¤¹¡£ # ¤½¤Î¾ì¹ç¤Ï¡¢"dhcpcd" ¤« "dhclient" ¤ËÃÖ¤´¹¤¨¤Ê¤±¤ì¤Ð # ¤Ê¤ê¤Þ¤»¤ó¡£ #  # Ãí°Õ #2 - ºÇ¶á¤Î¥Ð¡¼¥¸¥ç¥ó¤Î "dhcpcd" ¤Ç¤Ï¡¢¥³¥Þ¥ó¥ÉÊ¸Ë¡¤¬ÊÑ¤ï¤Ã¤Æ # ¤¤¤Þ¤¹¡£ # # µì¥Ð¡¼¥¸¥ç¥ó¤Ç¤Î»ØÄêÊýË¡¤Ï¡¢¼¡¤Î¤è¤¦¤Ê¤â¤Î¤Ç¤·¤¿: # dhcpcd -c /etc/rc.d/rc.firewall eth0 # # ¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó¤Ç¤Ï¼¡¤Î¤è¤¦¤Ë»ØÄê¤·¤Þ¤¹: # dhcpcd eth0 /etc/rc.d/rc.firewall #  # Ãí°Õ 3 - Pump ¤ò»È¤¦¾ì¹ç¡¢/etc/pump.conf ¥Õ¥¡¥¤¥ë¤Ë¼¡¤Îµ½Ò¤òÄÉ²Ã¤·¤Æ¤¯¤À¤µ¤¤¡£ # Ãí°Õ #3 - Pump ¤ò»È¤¦¾ì¹ç¡¢ /etc/pump.conf ¥Õ¥¡¥¤¥ë¤Ë¼¡¤Îµ½Ò¤ò # ÄÉ²Ã¤·¤Æ¤¯¤À¤µ¤¤ - # # script /etc/rc.d/rc.firewall #  # PPP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # ---------- # PPP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # -------------------- # ¤ªµ¤¤Å¤¤Ç¤Ï¤Ê¤¤¤«¤â¤·¤ì¤Þ¤»¤ó¤¬¡¢PPP ÀÜÂ³¤¬³ÎÎ©¤¹¤ëÅÙËè¤Ë¡¢ # /etc/ppp/ip-up ¥¹¥¯¥ê¥×¥È¤¬Æ°ºî¤·¤Þ¤¹¡£ # ¤³¤ì¤òÍøÍÑ¤·¤Æ¡¢¿·¤·¤¤ IP ¥¢¥É¥ì¥¹¤Î¼èÆÀ¤È¶¯¸Ç¤Ê¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦ # ¥ë¡¼¥ë¥»¥Ã¥È¤ÎºÆÀßÄê¤ò¹Ô¤¤¤Þ¤¹¡£ # # ¤â¤·¡¢/etc/ppp/ip-up ¤¬¤¹¤Ç¤ËÂ¸ºß¤·¤Æ¤¤¤ë¤Ê¤é¡¢¤½¤ì¤òÊÔ½¸¤·¤Æ"/etc/rc.d/rc.firewall" # ¤È¤¤¤¦µ½Ò¤òºÇ¸å¤Î¤¢¤¿¤ê¤ËÄÉ²Ã¤¹¤ë¤è¤¦¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # # ¤â¤·¡¢/etc/ppp/ip-up ¥¹¥¯¥ê¥×¥È¤¬Â¸ºß¤·¤Ê¤«¤Ã¤¿¤Ê¤é¡¢/etc/rc.d/rc.firewall ¥¹¥¯¥ê¥×¥È # ¤ò¼Â¹Ô¤¹¤ë¤¿¤á¤Î¼¡¤Î¤è¤¦¤Ê¥ê¥ó¥¯¤òºîÀ®¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ # # ln -s /etc/rc.d/rc.firewall /etc/ppp/ip-up #  # * Â³¤¤¤Æ¡¢°Ê²¼¤Î¥³¥á¥ó¥È¥¢¥¦¥È¤µ¤ì¤¿¥·¥§¥ë¥³¥Þ¥ó¥É¤òÉ¬Í×¤Ë±þ¤¸¤ÆÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤ * # #  # PPP µÚ¤Ó DHCP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # ------------------- # PPP µÚ¤Ó DHCP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # -------------------------------- # ¼¡¤Î¹Ô¤Î "#" ¤òºï½ü¤·¤Æ¡¢¤½¤Î¼¡¤Î¹Ô¤ÎÀèÆ¬¤Ë "#" ¤òÆþ¤ì¤Æ¤¯¤À¤µ¤¤¡£ # #ppp_ip="`/sbin/ifconfig ppp0 | grep 'inet addr' | awk '{print $2}' | sed -e 's/.*://'`" # ppp_ip="your.static.PPP.address"  # ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥¿¥¤¥à¥¢¥¦¥È # # 2 »þ´Ö= TCP ¥»¥Ã¥·¥ç¥ó # 10 ÉÃ¡¡= TCP/IP ¤Î "FIN" ¥Ñ¥±¥Ã¥È¤¬¼õ¿®¤µ¤ì¤¿¤¢¤È¤Î¥È¥é¥Õ¥£¥Ã¥¯ # 60 ÉÃ¡¡= UDP ¥È¥é¥Õ¥£¥Ã¥¯ (¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿´Ä¶¤Ç¤Î ICQ ¥æ¡¼¥¶¤Ï¡¢ # ICQ ¥¯¥é¥¤¥¢¥ó¥È¤ÎÀßÄê¤Ç¡¢¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥¿¥¤¥à¥¢¥¦¥ÈÃÍ¤ò # 30ÉÃ¤Ë»ØÄê¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó) # /sbin/ipfwadm -M -s 7200 10 60 #############################################################################   # ÅþÃå¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # µñÀä¡ÚÌõÃí: reject¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢µñÀä¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ë # ºÇ½ª¥ë¡¼¥ë¤òÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£  # ¡ÚÌõÃí: ¥ë¡¼¥ë¤ò reject ¤Ë¤¹¤ë¤È¡¢¥ë¡¼¥ë¤Ë¹çÃ×¤·¤¿¥Ñ¥±¥Ã¥È¤òÇË´þ¤·¤Æ¡¢ # "destination-unreachable" (ÌÜÅªÃÏ¤ËÅþÃ£¤·¤Ê¤¤) ¤È¤¤¤¦ ICMP ¥Ñ¥±¥Ã¥È¤ò # Áê¼êÂ¦ (Á÷¿®¸µ¥¢¥É¥ì¥¹¤Î¥Þ¥·¥ó) ¤ËÈ¯¿®¤·¤Þ¤¹¡£ # deny ¤Ë¤¹¤ë¤È¡¢"destination-unreachable" ¥Ñ¥±¥Ã¥È¤â½Ð¤µ¤º¤Ë¡¢¼õ¿®¤·¤¿ # ¥Ñ¥±¥Ã¥È¤òÃ±¤ËÇË´þ¤·¤Þ¤¹¡£ # /sbin/ipfwadm -I -f /sbin/ipfwadm -I -p reject  # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤È¥í¡¼¥«¥ë¥Þ¥·¥óÂ¦¤«¤é¤Î¥Ñ¥±¥Ã¥È¤Ï¤É¤³¤Ë¸þ¤«¤¦¤â¤Î¤âÍ¸ú¤È¤¹¤ë # ¥í¡¼¥«¥ë¥Þ¥·¥óÂ¦¤«¤é¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ËÆþ¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢¤É¤³¤Ë # ¸þ¤«¤¦¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # /sbin/ipfwadm -I -a accept -V 192.168.0.1 -S 192.168.0.0/24 -D 0.0.0.0/0  # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤«¤éÆþ¤Ã¤ÆÍè¤ë IP ¥¹¥×¡¼¥Õ¥£¥ó¥°¡ÚÌõÃí: IP µ¶Áõ¡Û # ¥Ñ¥±¥Ã¥È¤äÌÂ»Ò¥Ñ¥±¥Ã¥È¤Ï¡¢ËÜÍè¤Ê¤é¥í¡¼¥«¥ë¥Þ¥·¥ó¤«¤é¤Ç¤¢¤ë¤Ù¤¤â¤Î¤Ê¤Î¤Ç¡¢ # µñÀä¤¹¤ë¡£ # /sbin/ipfwadm -I -a reject -V $ppp_ip -S 192.168.0.0/24 -D 0.0.0.0/0 -o  # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤Î¸ÇÄêÅª¤Ê PPP ¥¢¥É¥ì¥¹¤ØÁ÷¤é¤ì¤ë¤É¤³¤«¤é¤Î¥Ñ¥±¥Ã¥È¤âÍ¸ú¤È¤¹¤ë # ¥ê¥â¡¼¥È¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤«¤éÆþ¤ë¡¢°¸Àè¥¢¥É¥ì¥¹¤¬ PPP ¥¢¥É¥ì¥¹¤Î¥Ñ¥±¥Ã¥È¤Ï¡¢ # ¤É¤ÎÈ¯¿®¸µ¥¢¥É¥ì¥¹¤«¤é¤Î¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # ¡ÚÌõÃí: °Ê²¼¤Î¥³¥Þ¥ó¥É¤ÎÁ°¤Ë¡¢ # /sbin/ipfwadm -I -a deny -V $ppp_ip -S 0.0.0.0/0 -y -D $ppp_ip/32 -o # ¤¬¤¢¤ë¤«¡¢°¿¤Ï°Ê²¼¤Î¥³¥Þ¥ó¥É¤¬ # /sbin/ipfwadm -I -a accept -V $ppp_ip -S 0.0.0.0/0 -k -D $ppp_ip/32 # ¤È¤Ê¤Ã¤Æ¤¤¤ëÊý¤¬¤è¤ê¹¥¤Þ¤·¤¤¤È»×¤¤¤Þ¤¹¡£¡Û # /sbin/ipfwadm -I -a accept -V $ppp_ip -S 0.0.0.0/0 -D $ppp_ip/32  # ¥ë¡¼¥×¥Ð¥Ã¥¯¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤òÍ¸ú¤È¤¹¤ë # /sbin/ipfwadm -I -a accept -V 127.0.0.1 -S 0.0.0.0/0 -D 0.0.0.0/0  # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÅþÃå¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£¥Ý¥ê¥·¡¼¤Ë¤Ï # ¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤¬¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤òÂå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë # ¤Ê¤ë¡£ # /sbin/ipfwadm -I -a reject -S 0.0.0.0/0 -D 0.0.0.0/0 -o #############################################################################  # # Á÷½Ð¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # µñÀä¡ÚÌõÃí: reject¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢µñÀä¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ëºÇ½ª¥ë¡¼¥ë¤ò # ÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£  /sbin/ipfwadm -O -f /sbin/ipfwadm -O -p reject  # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤«¤é¡¢¥í¡¼¥«¥ë¥Í¥Ã¥È¤Ø¸þ¤«¤¦¤É¤³¤«¤é¤Î¥Ñ¥±¥Ã¥È¤âÍ¸ú # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤«¤é½ÐÎÏ¤µ¤ì¤ë¡¢¥í¡¼¥«¥ë¥Í¥Ã¥È¤Ø¸þ¤«¤¦¥Ñ¥±¥Ã¥È¤Ï # ¤É¤³¤«¤é¤Î¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # /sbin/ipfwadm -O -a accept -V 192.168.0.1 -S 0.0.0.0/0 -D 192.168.0.0/24  # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¥í¡¼¥«¥ë¥Í¥Ã¥È¤ØÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢ # µ¶Áõ¥ë¡¼¥Æ¥£¥ó¥°¤Ê¤Î¤Ç¡¢µñÀä¤¹¤ë¡£  # /sbin/ipfwadm -O -a reject -V $ppp_ip -S 0.0.0.0/0 -D 192.168.0.0/24 -o  # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Ç¤Î¥í¡¼¥«¥ë¥Í¥Ã¥È¤Ø¤ÎÁ÷½Ð¥Ñ¥±¥Ã¥È¤Ï¤¢¤êÆÀ¤Ê¤¤¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ê¤Î¤ÇµñÈÝ # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤éÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢ # ¤¢¤êÆÀ¤Ê¤¤¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ê¤Î¤Ç¡¢µñÀä¤¹¤ë¡£ # /sbin/ipfwadm -O -a reject -V $ppp_ip -S 192.168.0.0/24 -D 0.0.0.0/0 -o  # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤éÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢ # ¤¢¤êÆÀ¤Ê¤¤¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ê¤Î¤Ç¡¢µñÀä¤¹¤ë¡£ # /sbin/ipfwadm -O -a reject -V $ppp_ip -S 0.0.0.0/0 -D 192.168.0.0/24 -o # ¡ÚÌõÃí: ¾åµ¥ë¡¼¥ë¤Ï2¤Ä¾å¤Î¤â¤Î¤ÈÁ´¤¯Æ±¤¸¤Ç¤¹¤Î¤Ç¡¢ÌÀ¤é¤«¤Ë´Ö°ã¤¤¤È # »×¤ï¤ì¤Þ¤¹¡£¡Û  # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤«¤é¤Î¤½¤ì°Ê³°¤ÎÁ÷½Ð¥Ñ¥±¥Ã¥È¤ÏÍ¸ú # /sbin/ipfwadm -O -a accept -V $ppp_ip -S $ppp_ip/32 -D 0.0.0.0/0  # ¥ë¡¼¥×¥Ð¥Ã¥¯¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤òÍ¸ú¤Ë¤¹¤ë # /sbin/ipfwadm -O -a accept -V 127.0.0.1 -S 0.0.0.0/0 -D 0.0.0.0/0  # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÁ÷½Ð¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£ # ¥Ý¥ê¥·¡¼¤Ë¤Ï¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤Ï¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤ò # Âå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë¤Ê¤ë¡£ # /sbin/ipfwadm -O -a reject -S 0.0.0.0/0 -D 0.0.0.0/0 -o #############################################################################  # Å¾Á÷¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # ÈÝÄê¡ÚÌõÃí: deny¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢ÈÝÄê¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ëºÇ½ª¥ë¡¼¥ë¤ò # ÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£ # /sbin/ipfwadm -F -f /sbin/ipfwadm -F -p deny  # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Ç¤Î¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤é¤½¤ÎÂ¾¤Î°¸Àè¤Ø¤Î¥Ñ¥±¥Ã¥È¤ò¥Þ¥¹¥«¥ì¡¼¥É¤¹¤ë # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Î¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤é¤½¤ÎÂ¾¤Î°¸Àè¤Ø¤Î¥Ñ¥±¥Ã¥È¤ò # ¥Þ¥¹¥«¥ì¡¼¥É¤¹¤ë¡£ # # /sbin/ipfwadm -F -a masquerade -W ppp0 -S 192.168.0.0/24 -D 0.0.0.0/0 #  # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÅ¾Á÷¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£ # ¥Ý¥ê¥·¡¼¤Ë¤Ï¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤Ï¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤ò # Âå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë¤Ê¤ë¡£ # /sbin/ipfwadm -F -a reject -S 0.0.0.0/0 -D 0.0.0.0/0 -o  #¥Õ¥¡¥¤¥ë½ª¤ï¤ê¡£ </verb> ]]>  <verb> #!/bin/sh # # /etc/rc.d/rc.firewall: IPFWADM ¤ò»È¤Ã¤¿¤ä¤ä¶¯¸Ç¤Ê¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¡¦¥ë¡¼¥ë¥»¥Ã¥È # PATH=/sbin:/bin:/usr/sbin:/usr/bin # ¥Æ¥¹¥ÈÍÑ - ¤·¤Ð¤é¤¯ÂÔµ¡¤·¤Æ¤«¤é¤¹¤Ù¤Æ¤Î¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¥ë¡¼¥ë¤ò¥¯¥ê¥¢¤¹¤ë¡£ # 10Ê¬¸å¤Ë¤¹¤Ù¤Æ¤ÎÀßÄê¤ò°ìÃ¶²ò½ü¤¹¤ëÉ¬Í×¤¬¤¢¤ë¤Ê¤é¡¢°Ê²¼¤Î¥³¥á¥ó¥È¤ò²ò½ü¤·¤Æ¤¯¤À¤µ¤¤¡£ # (sleep 600; \ # ipfwadm -I -f; \ # ipfwadm -I -p accept; \ # ipfwadm -O -f; \ # ipfwadm -O -p accept; \ # ipfwadm -F -f; \ # ipfwadm -F -p accept; \ # ) & # É¬Í×¤Ê¤¹¤Ù¤Æ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤ò¥í¡¼¥É¤¹¤ë # # Ãí°Õ - É¬Í×¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤À¤±¤ò¥í¡¼¥É¤·¤Þ¤¹¡£¤¹¤Ù¤Æ¤ÎIP ¥Þ¥¹¥«¥ì¡¼¥É # ¥â¥¸¥å¡¼¥ë¤¬°Ê²¼¤Ëµ½Ò¤µ¤ì¤Æ¤¤¤Þ¤¹¤¬¡¢¥í¡¼¥É¤µ¤ì¤Ê¤¤¤è¤¦¤Ë¥³¥á¥ó¥È¤È¤Ê¤Ã¤Æ # ¤¤¤Þ¤¹¡£ # ¥â¥¸¥å¡¼¥ë¤òºÇ½é¤Ë¥í¡¼¥É¤¹¤ë»þ¤Ë¤Þ¤ºÉ¬Í× # /sbin/depmod -a # PORT Êý¼°¤ò»È¤Ã¤ÆFTP ¥Õ¥¡¥¤¥ëÅ¾Á÷¤Ë¤ª¤±¤ëÅ¬ÀÚ¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹ # /sbin/modprobe ip_masq_ftp # UDP ¥×¥í¥È¥³¥ë¤ò·ÐÍ³¤·¤¿¡¢RealAudio ¤Î¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹¡£¤³¤Î¥â¥¸¥å¡¼¥ë¤¬¤Ê¤¯¤Æ¤â # RealAudio ¤Ï TCP ¥â¡¼¥É¤ÇÆ°ºî¤·¤Þ¤¹¤¬¡¢²»¼Á¤ÏÄã²¼¤·¤Þ¤¹¡£ # #/sbin/modprobe ip_masq_raudio # IRC DCC ¥Õ¥¡¥¤¥ëÅ¾Á÷¤Î¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹ # #/sbin/modprobe ip_masq_irc # °Ê²¼¤Î»ØÄê¤Ë¤è¤Ã¤Æ Quake ¤È QuakeWorld ¤ò¥Ç¥Õ¥©¥ë¥È¤ÇÄó¶¡¤·¤Þ¤¹¡£ # ¤³¤Î¥â¥¸¥å¡¼¥ë¤Ï Linux ¤Î ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤«¤éÆâÂ¦¤Î¥æ¡¼¥¶¤¬ # Ê£¿ôÂ¸ºß¤¹¤ë¾ì¹ç¤Î¤¿¤á¤Î¤â¤Î¤Ç¤¹¡£ # ¤â¤·¡¢Quake I, II, ¤¢¤ë¤¤¤Ï III ¤ò»È¤¤¤¿¤¤¤Ê¤é¤Ð¡¢£²ÈÖÌÜ¤ÎÎã¤ò # »È¤Ã¤Æ¤¯¤À¤µ¤¤¡£ # # Ãí°Õ - ¤â¤·¡¢QUAKE ¥â¥¸¥å¡¼¥ë¤Î¥í¡¼¥É»þ¤Ë¥¨¥é¡¼¤¬½Ð¤¿¾ì¹ç¤Ï¡¢¸Å¤¤¥Ð¥°¤Î¤¢¤ë¥«¡¼¥Í¥ë¤¬Æ°¤¤¤Æ¤¤¤Þ¤¹¡£ # ----- ¤½¤Î¾ì¹ç¤Ï¤è¤ê¿·¤·¤¤¥«¡¼¥Í¥ë¤ËÃÖ¤´¹¤¨¤Æ¤¯¤À¤µ¤¤¡£ # #Quake I / QuakeWorld (ports 26000 and 27000) #/sbin/modprobe ip_masq_quake # #Quake I/II/III / QuakeWorld (ports 26000, 27000, 27910, 27960) #/sbin/modprobe ip_masq_quake 26000,27000,27910,27960 # CuSeeme ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥¨¥¢¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡ # #/sbin/modprobe ip_masq_cuseeme # VDO-Live ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥¨¥¢¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡ # #/sbin/modprobe ip_masq_vdolive #Èó¾ï¤Ë½ÅÍ× - IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤ÏÌµ¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤Î¤Ç¡¢Í¸ú¤Ë¤·¤Þ¤¹¡£ # # Redhat ¥æ¡¼¥¶¤Î¾ì¹ç¤Ï¡¢/etc/sysconfig/network ¤Î¥ª¥×¥·¥ç¥ó»ØÄê¹Ô¤ò # # FORWARD_IPV4=false # ¤«¤é # FORWARD_IPV4=true # ¤ËÊÑ¹¹¤·¤Æ¤¯¤À¤µ¤¤¡£ # echo "1" > /proc/sys/net/ipv4/ip_forward #Èó¾ï¤Ë½ÅÍ× - 2.2.x ¥«¡¼¥Í¥ë¤Ç¤Ï IP ¥Ç¥Õ¥é¥°¥á¥ó¥Æ¡¼¥·¥ç¥ó¤Î¥µ¥Ý¡¼¥È¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤ÏÌµ¸ú¤Ç¤¹¡£ # # ¥³¥ó¥Ñ¥¤¥ë»þ¤Î»ØÄê¤Ë¤è¤ë¤â¤Î¤Ç¤¹¤¬¡¢2.2.12 ¥«¡¼¥Í¥ë°Ê¹ß¤ÏÊÑ¹¹¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ # echo "1" > /proc/sys/net/ipv4/ip_always_defrag # Æ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤¹¤ë¥æ¡¼¥¶¸þ¤± - # # IP ¥¢¥É¥ì¥¹¤ò SLIP, PPP, DHCP ¤Ê¤É¤«¤éÆ°Åª¤Ë¼èÆÀ¤¹¤ë¾ì¹ç¤Ï¡¢¼¡¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¡¢IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÇÆ°Åª IP ¥¢¥É¥ì¥¹¤ÎÁàºî¤òµö²Ä¤·¡¢Diald¤äÆ±ÍÍ¤Ê¥×¥í¥°¥é¥à¤Î # »ÈÍÑ¤ò¤è¤êÍÆ°×¤Ë¤¹¤ë¤â¤Î¤Ç¤¹¡£ # #echo "1" > /proc/sys/net/ipv4/ip_dynaddr # ¤¢¤Ê¤¿¤ÎÀÅÅª¤Ê IP ¥¢¥É¥ì¥¹¤ò°Ê²¼¤Ë»ØÄê¤·¤Þ¤¹ # # Æ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤¹¤ë¤Ê¤é¡¢¿·¤·¤¤ IP ¥¢¥É¥ì¥¹¤¬³ä¤êÅö¤Æ¤é¤ì¤ë¤¿¤Ó¤ËÅ¬ÍÑ # ¤¹¤ë¤è¤¦¤Ë¡¢¥ë¡¼¥ë¥»¥Ã¥È¤ò½ñ¤´¹¤¨¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£¤½¤Î¤¿¤á¤Ë¤Ï¡¢¡¢°Ê²¼¤Î¤è¤¦¤Ê°ì¹Ô¤Î¥¹¥¯¥ê¥×¥È¤ò # Í¸ú¤Ë¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£¡Ê¥¹¥¯¥ê¥×¥ÈÎãÆâ¤Î°ì½Å°úÍÑÉä¤ÈÆó½Å°úÍÑÉä¤Î°ã¤¤¤Ï°ÕÌ£¤ò»ý¤Á¤Þ¤¹¤Î¤ÇÃí°Õ¡Ë # # # DHCP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # --------------------- # TCP/IP ¥¢¥É¥ì¥¹¤ò DHCP ¤«¤é¼èÆÀ¤¹¤ë¾ì¹ç¤Ï¡¢ ppp ¥»¥¯¥·¥ç¥ó¤Î²¼¤Ë¤¢¤ë¡¢ # "#" ¤Ç¥³¥á¥ó¥È¥¢¥¦¥È¤µ¤ì¤¿ÉôÊ¬¤òÍ¸ú¤Ë¤·¡¢"ppp0" ¤È¤¢¤ëÉôÊ¬¤ò¡¢ # ¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³ÍÑ¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ÎÌ¾Á°¤ËÃÖ¤´¹¤¨¤Ê¤±¤ì¤Ð # ¤Ê¤ê¤Þ¤»¤ó (Îã¤¨¤Ð¡¢ eth0 ¤ä eth1 Åù) ¡£ # DHCP ¤Ï³ä¤êÅö¤Æ¤¿ IP ¥¢¥É¥ì¥¹¤ò¿ï»þÊÑ¹¹¤¹¤ë¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¤³¤ÎÊÑ¹¹¤òÀµ¤·¤¯È¿±Ç¤µ¤»¤ë¤Ë¤Ï¡¢ DHCP ¥ê¡¼¥¹¤¬¹¹¿·¤µ¤ì¤ëÅÙËè¤Ë¡¢ # DHCP ¥¯¥é¥¤¥¢¥ó¥È¤òºÆÅÙ¼Â¹Ô¤·¤Æ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥ë¡¼¥ë¥»¥Ã¥È¤òÈ¿±Ç # ¤µ¤»¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ # # Ãí°Õ #1 - µì¥Ð¡¼¥¸¥ç¥ó¤Î "pump" ¤Î¤è¤¦¤Ê (¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó¤Ç¤Ï # ÌäÂêÅÀ¤Ï½¤Àµ¤µ¤ì¤Æ¤¤¤Þ¤¹) DHCP ¥¯¥é¥¤¥¢¥ó¥È¤Ë¤è¤Ã¤Æ¤Ï¡¢ # IP ¥¢¥É¥ì¥¹¥ê¡¼¥¹¹¹¿·¸å¤Ë¥¹¥¯¥ê¥×¥È¤ò¼Â¹Ô¤¹¤ë¤³¤È¤¬ # ¤Ç¤¤Ê¤¤¤â¤Î¤¬¤¢¤ê¤Þ¤¹¡£ # ¤½¤Î¾ì¹ç¤Ï¡¢"dhcpcd" ¤« "dhclient" ¤ËÃÖ¤´¹¤¨¤Ê¤±¤ì¤Ð # ¤Ê¤ê¤Þ¤»¤ó¡£ # # Ãí°Õ #2 - ºÇ¶á¤Î¥Ð¡¼¥¸¥ç¥ó¤Î "dhcpcd" ¤Ç¤Ï¡¢¥³¥Þ¥ó¥ÉÊ¸Ë¡¤¬ÊÑ¤ï¤Ã¤Æ # ¤¤¤Þ¤¹¡£ # # µì¥Ð¡¼¥¸¥ç¥ó¤Ç¤Î»ØÄêÊýË¡¤Ï¡¢¼¡¤Î¤è¤¦¤Ê¤â¤Î¤Ç¤·¤¿ - # dhcpcd -c /etc/rc.d/rc.firewall eth0 # # ¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó¤Ç¤Ï¼¡¤Î¤è¤¦¤Ë»ØÄê¤·¤Þ¤¹ - # dhcpcd eth0 /etc/rc.d/rc.firewall # # Ãí°Õ #3 - Pump ¤ò»È¤¦¾ì¹ç¡¢ /etc/pump.conf ¥Õ¥¡¥¤¥ë¤Ë¼¡¤Îµ½Ò¤ò # ÄÉ²Ã¤·¤Æ¤¯¤À¤µ¤¤ - # # script /etc/rc.d/rc.firewall # # # PPP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # -------------------- # ¤ªµ¤¤Å¤¤Ç¤Ï¤Ê¤¤¤«¤â¤·¤ì¤Þ¤»¤ó¤¬¡¢PPP ÀÜÂ³¤¬³ÎÎ©¤¹¤ëÅÙËè¤Ë¡¢ # /etc/ppp/ip-up ¥¹¥¯¥ê¥×¥È¤¬Æ°ºî¤·¤Þ¤¹¡£ # ¤³¤ì¤òÍøÍÑ¤·¤Æ¡¢¿·¤·¤¤ IP ¥¢¥É¥ì¥¹¤Î¼èÆÀ¤È¶¯¸Ç¤Ê¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦ # ¥ë¡¼¥ë¥»¥Ã¥È¤ÎºÆÀßÄê¤ò¹Ô¤¤¤Þ¤¹¡£ # # ¤â¤·¡¢/etc/ppp/ip-up ¤¬¤¹¤Ç¤ËÂ¸ºß¤·¤Æ¤¤¤ë¤Ê¤é¡¢¤½¤ì¤òÊÔ½¸¤·¤Æ"/etc/rc.d/rc.firewall" # ¤È¤¤¤¦µ½Ò¤òºÇ¸å¤Î¤¢¤¿¤ê¤ËÄÉ²Ã¤¹¤ë¤è¤¦¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # # ¤â¤·¡¢/etc/ppp/ip-up ¥¹¥¯¥ê¥×¥È¤¬Â¸ºß¤·¤Ê¤«¤Ã¤¿¤Ê¤é¡¢/etc/rc.d/rc.firewall ¥¹¥¯¥ê¥×¥È # ¤ò¼Â¹Ô¤¹¤ë¤¿¤á¤Î¼¡¤Î¤è¤¦¤Ê¥ê¥ó¥¯¤òºîÀ®¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ # # ln -s /etc/rc.d/rc.firewall /etc/ppp/ip-up # # * Â³¤¤¤Æ¡¢°Ê²¼¤Î¥³¥á¥ó¥È¥¢¥¦¥È¤µ¤ì¤¿¥·¥§¥ë¥³¥Þ¥ó¥É¤òÉ¬Í×¤Ë±þ¤¸¤ÆÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤ * # # # # PPP µÚ¤Ó DHCP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # -------------------------------- # ¼¡¤Î¹Ô¤Î "#" ¤òºï½ü¤·¤Æ¡¢¤½¤Î¼¡¤Î¹Ô¤ÎÀèÆ¬¤Ë "#" ¤òÆþ¤ì¤Æ¤¯¤À¤µ¤¤¡£ # #ppp_ip="`/sbin/ifconfig ppp0 | grep 'inet addr' | awk '{print $2}' | sed -e 's/.*://'`" # ppp_ip="your.static.PPP.address" # ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥¿¥¤¥à¥¢¥¦¥È # # 2 »þ´Ö= TCP ¥»¥Ã¥·¥ç¥ó # 10 ÉÃ¡¡= TCP/IP ¤Î "FIN" ¥Ñ¥±¥Ã¥È¤¬¼õ¿®¤µ¤ì¤¿¤¢¤È¤Î¥È¥é¥Õ¥£¥Ã¥¯ # 60 ÉÃ¡¡= UDP ¥È¥é¥Õ¥£¥Ã¥¯ (¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿´Ä¶¤Ç¤Î ICQ ¥æ¡¼¥¶¤Ï¡¢ # ICQ ¥¯¥é¥¤¥¢¥ó¥È¤ÎÀßÄê¤Ç¡¢¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥¿¥¤¥à¥¢¥¦¥ÈÃÍ¤ò # 30ÉÃ¤Ë»ØÄê¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó) # /sbin/ipfwadm -M -s 7200 10 60 ############################################################################# # ÅþÃå¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # µñÀä¡ÚÌõÃí: reject¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢µñÀä¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ë # ºÇ½ª¥ë¡¼¥ë¤òÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£ # ¡ÚÌõÃí: ¥ë¡¼¥ë¤ò reject ¤Ë¤¹¤ë¤È¡¢¥ë¡¼¥ë¤Ë¹çÃ×¤·¤¿¥Ñ¥±¥Ã¥È¤òÇË´þ¤·¤Æ¡¢ # "destination-unreachable" (ÌÜÅªÃÏ¤ËÅþÃ£¤·¤Ê¤¤) ¤È¤¤¤¦ ICMP ¥Ñ¥±¥Ã¥È¤ò # Áê¼êÂ¦ (Á÷¿®¸µ¥¢¥É¥ì¥¹¤Î¥Þ¥·¥ó) ¤ËÈ¯¿®¤·¤Þ¤¹¡£ # deny ¤Ë¤¹¤ë¤È¡¢"destination-unreachable" ¥Ñ¥±¥Ã¥È¤â½Ð¤µ¤º¤Ë¡¢¼õ¿®¤·¤¿ # ¥Ñ¥±¥Ã¥È¤òÃ±¤ËÇË´þ¤·¤Þ¤¹¡£ # /sbin/ipfwadm -I -f /sbin/ipfwadm -I -p reject # ¥í¡¼¥«¥ë¥Þ¥·¥óÂ¦¤«¤é¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ËÆþ¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢¤É¤³¤Ë # ¸þ¤«¤¦¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # /sbin/ipfwadm -I -a accept -V 192.168.0.1 -S 192.168.0.0/24 -D 0.0.0.0/0 # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤«¤éÆþ¤Ã¤ÆÍè¤ë IP ¥¹¥×¡¼¥Õ¥£¥ó¥°¡ÚÌõÃí: IP µ¶Áõ¡Û # ¥Ñ¥±¥Ã¥È¤äÌÂ»Ò¥Ñ¥±¥Ã¥È¤Ï¡¢ËÜÍè¤Ê¤é¥í¡¼¥«¥ë¥Þ¥·¥ó¤«¤é¤Ç¤¢¤ë¤Ù¤¤â¤Î¤Ê¤Î¤Ç¡¢ # µñÀä¤¹¤ë¡£ # /sbin/ipfwadm -I -a reject -V $ppp_ip -S 192.168.0.0/24 -D 0.0.0.0/0 -o # ¥ê¥â¡¼¥È¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤«¤éÆþ¤ë¡¢°¸Àè¥¢¥É¥ì¥¹¤¬ PPP ¥¢¥É¥ì¥¹¤Î¥Ñ¥±¥Ã¥È¤Ï¡¢ # ¤É¤ÎÈ¯¿®¸µ¥¢¥É¥ì¥¹¤«¤é¤Î¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # ¡ÚÌõÃí: °Ê²¼¤Î¥³¥Þ¥ó¥É¤ÎÁ°¤Ë¡¢ # /sbin/ipfwadm -I -a deny -V $ppp_ip -S 0.0.0.0/0 -y -D $ppp_ip/32 -o # ¤¬¤¢¤ë¤«¡¢°¿¤Ï°Ê²¼¤Î¥³¥Þ¥ó¥É¤¬ # /sbin/ipfwadm -I -a accept -V $ppp_ip -S 0.0.0.0/0 -k -D $ppp_ip/32 # ¤È¤Ê¤Ã¤Æ¤¤¤ëÊý¤¬¤è¤ê¹¥¤Þ¤·¤¤¤È»×¤¤¤Þ¤¹¡£¡Û # /sbin/ipfwadm -I -a accept -V $ppp_ip -S 0.0.0.0/0 -D $ppp_ip/32 # ¥ë¡¼¥×¥Ð¥Ã¥¯¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤òÍ¸ú¤È¤¹¤ë # /sbin/ipfwadm -I -a accept -V 127.0.0.1 -S 0.0.0.0/0 -D 0.0.0.0/0 # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÅþÃå¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£¥Ý¥ê¥·¡¼¤Ë¤Ï # ¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤¬¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤òÂå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë # ¤Ê¤ë¡£ # /sbin/ipfwadm -I -a reject -S 0.0.0.0/0 -D 0.0.0.0/0 -o ############################################################################# # Á÷½Ð¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # µñÀä¡ÚÌõÃí: reject¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢µñÀä¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ëºÇ½ª¥ë¡¼¥ë¤ò # ÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£ # /sbin/ipfwadm -O -f /sbin/ipfwadm -O -p reject # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤«¤é½ÐÎÏ¤µ¤ì¤ë¡¢¥í¡¼¥«¥ë¥Í¥Ã¥È¤Ø¸þ¤«¤¦¥Ñ¥±¥Ã¥È¤Ï # ¤É¤³¤«¤é¤Î¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # /sbin/ipfwadm -O -a accept -V 192.168.0.1 -S 0.0.0.0/0 -D 192.168.0.0/24 # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¥í¡¼¥«¥ë¥Í¥Ã¥È¤ØÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢ # µ¶Áõ¥ë¡¼¥Æ¥£¥ó¥°¤Ê¤Î¤Ç¡¢µñÀä¤¹¤ë¡£ # /sbin/ipfwadm -O -a reject -V $ppp_ip -S 0.0.0.0/0 -D 192.168.0.0/24 -o # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤éÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢ # ¤¢¤êÆÀ¤Ê¤¤¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ê¤Î¤Ç¡¢µñÀä¤¹¤ë¡£ # /sbin/ipfwadm -O -a reject -V $ppp_ip -S 192.168.0.0/24 -D 0.0.0.0/0 -o # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤éÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢ # ¤¢¤êÆÀ¤Ê¤¤¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ê¤Î¤Ç¡¢µñÀä¤¹¤ë¡£ # /sbin/ipfwadm -O -a reject -V $ppp_ip -S 0.0.0.0/0 -D 192.168.0.0/24 -o # ¡ÚÌõÃí: ¾åµ¥ë¡¼¥ë¤Ï2¤Ä¾å¤Î¤â¤Î¤ÈÁ´¤¯Æ±¤¸¤Ç¤¹¤Î¤Ç¡¢ÌÀ¤é¤«¤Ë´Ö°ã¤¤¤È # »×¤ï¤ì¤Þ¤¹¡£¡Û # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤«¤é¤Î¤½¤ì°Ê³°¤ÎÁ÷½Ð¥Ñ¥±¥Ã¥È¤ÏÍ¸ú # /sbin/ipfwadm -O -a accept -V $ppp_ip -S $ppp_ip/32 -D 0.0.0.0/0 # ¥ë¡¼¥×¥Ð¥Ã¥¯¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤òÍ¸ú¤Ë¤¹¤ë # /sbin/ipfwadm -O -a accept -V 127.0.0.1 -S 0.0.0.0/0 -D 0.0.0.0/0 # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÁ÷½Ð¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£ # ¥Ý¥ê¥·¡¼¤Ë¤Ï¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤Ï¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤ò # Âå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë¤Ê¤ë¡£ # /sbin/ipfwadm -O -a reject -S 0.0.0.0/0 -D 0.0.0.0/0 -o ############################################################################# # Å¾Á÷¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # ÈÝÄê¡ÚÌõÃí: deny¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢ÈÝÄê¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ëºÇ½ª¥ë¡¼¥ë¤ò # ÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£ # /sbin/ipfwadm -F -f /sbin/ipfwadm -F -p deny # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Î¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤é¤½¤ÎÂ¾¤Î°¸Àè¤Ø¤Î¥Ñ¥±¥Ã¥È¤ò # ¥Þ¥¹¥«¥ì¡¼¥É¤¹¤ë¡£ # # /sbin/ipfwadm -F -a masquerade -W ppp0 -S 192.168.0.0/24 -D 0.0.0.0/0 # # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÅ¾Á÷¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£ # ¥Ý¥ê¥·¡¼¤Ë¤Ï¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤Ï¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤ò # Âå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë¤Ê¤ë¡£ # /sbin/ipfwadm -F -a reject -S 0.0.0.0/0 -D 0.0.0.0/0 -o #¥Õ¥¡¥¤¥ë½ª¤ï¤ê¡£ </verb>  IPFWADM ¤Ç¤Ï¡¢ -I, -O ¤¢¤ë¤¤¤Ï -F ¥ë¡¼¥ë¤Ë¤è¤Ã¤Æ¡¢ÆÃÄê¤Î¥µ¥¤¥È¤Ø¤Î ¥È¥é¥Õ¥£¥Ã¥¯¤òÁË»ß¤¹¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ ¤³¤Î¥ë¡¼¥ë¤ÏºÇ½é¤«¤éºÇ¸å¤Ø¤È½ç¤ËÅ¬ÍÑ¤µ¤ì¤Æ¤¤¤¤Þ¤¹¡£ ¤Þ¤¿¡¢ IPFWADM ¤Î "-a"¥ª¥×¥·¥ç¥ó¤Ï¡¢´ûÂ¸¤Î¥ë¡¼¥ë·²¤ËÂÐ¤·¤Æ¿·¤·¤¤ ¥ë¡¼¥ë¤ò¡ÖÄÉ²Ã¡×¤¹¤ë¤â¤Î¤À¤È¤¤¤¦¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤ì¤ËÎ±°Õ¤¹¤ë¤È¡¢Á´ÂÎ¤Î¥ë¡¼¥ë¤ò»ØÄê¤¹¤ëÁ°¤Ë¡¢Â¾¤Î¸ÄÊÌ¤ÎÀ©¸Â¤¬É¬Í×¤È ¤Ê¤Ã¤Æ¤¤Þ¤¹¡£ ¤¿¤È¤¨¤Ð¡¢¼¡¤Î¤è¤¦¤Ê¤â¤Î¤Ç¤¹ -  -I (ÅþÃå)¥ë¡¼¥ë - -I (input) ¥ë¡¼¥ë¤ò»È¤¦ -  ¡ÚÌõÃí: Á´¤Æ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤ËÅþÃå¤¹¤ë¥Ñ¥±¥Ã¥È¤¬ÄÌ²á¤¹¤ë¥ë¡¼¥ë¤Ç¤¹¡£ ¸ÄÊÌ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î»ØÄê¤Ï¡¢ -V ¥ª¥×¥·¥ç¥óËô¤Ï -W ¥ª¥×¥·¥ç¥ó¤Ç »ØÄê¤·¤Þ¤¹¡£¡Û  ¤³¤ì¤Ï¤ª¤½¤é¤¯¥È¥é¥Õ¥£¥Ã¥¯¤ò¥Ö¥í¥Ã¥¯¤¹¤ë°Ù¤Î¡¢ºÇ¤â¼ê¤Ã¼è¤êÁá¤¯¤Æ ¸úÎ¨¤ÎÎÉ¤¤ÊýË¡¤Ç¤¹¤¬¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥Þ¥·¥ó¤ËÂÐ¤·¤Æ¤Î¤ßÁË»ß¤Ç¤¡¢ ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥Þ¥·¥ó¼«¿È¤Ø¤Î¥È¥é¥Õ¥£¥Ã¥¯¤ÏÁË»ß¤Ç¤¤Þ¤»¤ó¡£ ¤â¤Á¤í¤ó¡¢¤³¤ÎÁÈ¤ß¹ç¤ï¤»¤òµö²Ä¤·¤¿¤¤¤È¤¤¤¦¤³¤È¤â¤¢¤ë¤Ç¤·¤ç¤¦¤¬¡£   ¤µ¤Æ¡¢ 204.50.10.13 ¤È¤¤¤¦¥¢¥É¥ì¥¹¤Ø¤Î¥È¥é¥Õ¥£¥Ã¥¯¤òÁË»ß¤¹¤ë¾ì¹ç -  /etc/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤ÎÃæ¤Î /etc/rc.d/rc.firewall ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ÎÃæ - <![ %codes; CDATA [ <verb>  ... -I ¥ë¡¼¥ë¤Î¤Ï¤¸¤Þ¤ê ...  # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¡¢ 204.50.10.13 ¤È¤¤¤¦¥Þ¥·¥ó¤Ø¤Î¥Ñ¥±¥Ã¥È¤ò # µñÀä¤·¤Æ¥í¥°¤ò¼è¤ë¡£ # /sbin/ipfwadm -I -a reject -V 192.168.0.1 -S 192.168.0.0/24 -D 204.50.10.13/32 -o  #¡¡¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¡¢¤¢¤é¤æ¤ë¥í¡¼¥«¥ë¥Þ¥·¥ó¤«¤éÈ¯¤»¤é¤ì¤ë # ¥Ñ¥±¥Ã¥È¤Ï¡¢¤É¤³¤Ø¸þ¤«¤¦¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # /sbin/ipfwadm -I -a accept -V 192.168.0.1 -S 192.168.0.0/24 -D 0.0.0.0/0  ... -I ¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb> ]]> <verb> ... -I ¥ë¡¼¥ë¤Î¤Ï¤¸¤Þ¤ê ... # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¡¢ 204.50.10.13 ¤È¤¤¤¦¥Þ¥·¥ó¤Ø¤Î¥Ñ¥±¥Ã¥È¤ò # µñÀä¤·¤Æ¥í¥°¤ò¼è¤ë¡£ # /sbin/ipfwadm -I -a reject -V 192.168.0.1 -S 192.168.0.0/24 -D 204.50.10.13/32 -o #¡¡¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¡¢¤¢¤é¤æ¤ë¥í¡¼¥«¥ë¥Þ¥·¥ó¤«¤éÈ¯¤»¤é¤ì¤ë # ¥Ñ¥±¥Ã¥È¤Ï¡¢¤É¤³¤Ø¸þ¤«¤¦¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # /sbin/ipfwadm -I -a accept -V 192.168.0.1 -S 192.168.0.0/24 -D 0.0.0.0/0 ... -I ¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb>  -o (Á÷½Ð)¥ë¡¼¥ë - -O (output) ¥ë¡¼¥ë¤ò»È¤¦ -  ¡ÚÌõÃí: Á´¤Æ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤«¤éÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤¬ÄÌ²á¤¹¤ë¥ë¡¼¥ë¤Ç¤¹¡£ ¸ÄÊÌ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î»ØÄê¤Ï¡¢ -V ¥ª¥×¥·¥ç¥óËô¤Ï -W ¥ª¥×¥·¥ç¥ó¤Ç »ØÄê¤·¤Þ¤¹¡£¡Û  ¤³¤ì¤Ï¥È¥é¥Õ¥£¥Ã¥¯¤ò¥Ö¥í¥Ã¥¯¤¹¤ë¤Ë¤ÏÃÙ¤¤ÊýË¡¤Ç¤¹¡£ ²¿¸Î¤Ê¤é¤Ð¡¢¥Ñ¥±¥Ã¥È¤ÏÇË´þ¤µ¤ì¤ë¤è¤ê°ÊÁ°¤Ë¥Þ¥¹¥«¥ì¡¼¥É¤òÄÌ¤Ã¤Æ¤·¤Þ¤¦ ¤«¤é¤Ç¤¹¡£ ¤·¤«¤·¤Ê¤¬¤é¤³¤Î¥ë¡¼¥ë¤Ç¤â¡¢¶Ø»ß¤·¤Æ¤¤¤ë¥µ¥¤¥È¤«¤é¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë ¥Þ¥·¥ó¤ËÂÐ¤¹¤ë¥¢¥¯¥»¥¹¤òÁË»ß¤¹¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£  <![ %codes; CDATA [ <verb>  ... -O ¥ë¡¼¥ë¤Î»Ï¤Þ¤ê ...  # 204.50.10.13 ¤Ë¸þ¤±¤é¤ì¤¿¥Ñ¥±¥Ã¥È¤òµñÈÝ¤·¤Æ¥í¥°¤òºÎ¼è¤¹¤ë # 204.50.10.13 ¤Ë¸þ¤±¤é¤ì¤¿¥Ñ¥±¥Ã¥È¤òµñÀä¤·¤Æ¥í¥°¤òºÎ¼è¤¹¤ë¡£ # /sbin/ipfwadm -O -a reject -V $ppp_ip -S $ppp_ip/32 -D 204.50.10.13/32 -o  # ¾åµ°Ê³°¤Î¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¤Î¤¢¤é¤æ¤ë¥Ñ¥±¥Ã¥È¤ÎÁ÷½Ð¤Ï # Í¸ú¤Ë¤¹¤ë¡£ # /sbin/ipfwadm -O -a accept -V $ppp_ip -S $ppp_ip/32 -D 0.0.0.0/0  ... -O ¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb> ]]> <verb> ... -O ¥ë¡¼¥ë¤Î»Ï¤Þ¤ê ... # 204.50.10.13 ¤Ë¸þ¤±¤é¤ì¤¿¥Ñ¥±¥Ã¥È¤òµñÈÝ¤·¤Æ¥í¥°¤òºÎ¼è¤¹¤ë # /sbin/ipfwadm -O -a reject -V $ppp_ip -S $ppp_ip/32 -D 204.50.10.13/32 -o # ¾åµ°Ê³°¤Î¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¤Î¤¢¤é¤æ¤ë¥Ñ¥±¥Ã¥È¤ÎÁ÷½Ð¤Ï # Í¸ú¤Ë¤¹¤ë¡£ # /sbin/ipfwadm -O -a accept -V $ppp_ip -S $ppp_ip/32 -D 0.0.0.0/0 ... -O ¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb>  -F (Å¾Á÷)¥ë¡¼¥ë¤Î»ÈÍÑ - -F (forward) ¥ë¡¼¥ë¤ò»È¤¦ - ¡ÚÌõÃí: Á´¤Æ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¾å¤ÇÅ¾Á÷¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤¬ÄÌ²á¤¹¤ë¥ë¡¼¥ë¤Ç¤¹¡£ ¸ÄÊÌ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î»ØÄê¤Ï¡¢ -V ¥ª¥×¥·¥ç¥óËô¤Ï -W ¥ª¥×¥·¥ç¥ó¤Ç »ØÄê¤·¤Þ¤¹¡£¡Û  ¤ª¤½¤é¤¯¡¢¥È¥é¥Õ¥£¥Ã¥¯¤ò¥Ö¥í¥Ã¥¯¤¹¤ë¤Ë¤Ï¡¢ -I (input) ¥ë¡¼¥ë¤è¤ê ÃÙ¤¤ÊýË¡¤Ç¤¹¤¬¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥Þ¥·¥ó (¤¿¤È¤¨¤Ð¡¢¥í¡¼¥«¥ë¥¨¥ê¥¢ ¥Í¥Ã¥È¥ï¡¼¥¯¤Î¥Þ¥·¥ó) ¤ËÂÐ¤¹¤ë¥È¥é¥Õ¥£¥Ã¥¯¤À¤±¤ÏÁË»ß¤Ç¤¤Þ¤¹¡£ ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥Þ¥·¥ó¤Ï¶Ø»ß¤·¤¿¤¤¥µ¥¤¥È¤«¤éÅþÃ£²ÄÇ½¤Î¤Þ¤Þ¤Ç¤¹¡£ <![ %codes CDATA [ <verb>  ... -F ¥ë¡¼¥ë¤Î³«»Ï ...  # PPP ¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¤Î 204.50.10.13 ¤Ë¸þ¤±¤¿¥Ñ¥±¥Ã¥È¤òµñÈÝ¤·¤Æ¥í¥°ºÎ¼è¤¹¤ë # /sbin/ipfwadm -F -a reject -W ppp0 -S 192.168.0.0/24 -D 204.50.10.13/32 -o  # ¥í¡¼¥«¥ë¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Â¦¤Î¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤é¤Î¥Þ¥¹¥«¥ì¡¼¥É¤ò¹Ô¤¦ # /sbin/ipfwadm -F -a masquerade -W ppp0 -S 192.168.0.0/24 -D 0.0.0.0/0  ... -F ¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb> ]]> <verb> ... -F ¥ë¡¼¥ë¤Î³«»Ï ... # PPP ¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¤Î 204.50.10.13 ¤Ë¸þ¤±¤¿¥Ñ¥±¥Ã¥È¤òµñÈÝ¤·¤Æ¥í¥°ºÎ¼è¤¹¤ë # /sbin/ipfwadm -F -a reject -W ppp0 -S 192.168.0.0/24 -D 204.50.10.13/32 -o # ¥í¡¼¥«¥ë¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Â¦¤Î¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤é¤Î¥Þ¥¹¥«¥ì¡¼¥É¤ò¹Ô¤¦ # /sbin/ipfwadm -F -a masquerade -W ppp0 -S 192.168.0.0/24 -D 0.0.0.0/0 ... -F ¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb>  192.168.0.0/24 ¤Î¥Þ¥·¥ó¤«¤é 204.50.11.0 ¤Ë¸þ¤±¤Æ¤Î¥¢¥¯¥»¥¹¤òµö¤¹ÆÃÊÌ¤Ê¥ë¡¼¥ë¤ÏÉÔÍ×¤Ç¤¹¡£ ¤Ê¤¼¤Ê¤é¡¢¤½¤ì¤é¤ÏÁ´ÂÎÅª¤Ê¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Î¥ë¡¼¥ë¤Ë¤è¤Ã¤Æ¤Þ¤«¤Ê¤ï¤ì¤Æ¤¤¤ë¤«¤é¤Ç¤¹¡£  Ãí°Õ - Á°½Ð¤ÎÊýË¡°Ê³°¤Ë¤â¡¢³Æ¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤òµ½Ò¤¹¤ëÊýË¡¤Ï¤¢¤ê¤Þ¤¹¡£ Îã¤¨¤Ð¡¢ "-V 192.168.255.1" ¤È¤¤¤¦µ½Ò¤ÎÂå¤ï¤ê¤Ë¡¢"-W eth0"¤È¤â ½ñ¤±¤Þ¤¹¤·¡¢ "-V $ppp_ip" ¤È¤¤¤¦µ½Ò¤ÎÂå¤ï¤ê¤Ë "-W ppp0" ¤È¤â ½ñ¤±¤Þ¤¹¡£ "-V" ¤ò»È¤¦ÊýË¡¤Ï IPCHAINS ¤Ø°Ü¹Ô¤¹¤ë¾ì¹ç¤Ë¤Ï»È¤¨¤Þ¤»¤ó¡£ ¤·¤«¤·¡¢ IPFWADM ¤Î¥æ¡¼¥¶¤¬¤É¤Á¤é¤òÁªÂò¤¹¤ë¤«¤Ï¸Ä¿Í¤Î¼«Í³¤Ç¤¢¤ê¡¢ ÌÀÊ¸²½¤·¤Æ½Ò¤Ù¤ë¤Þ¤Ç¤â¤Ê¤¤¤³¤È¤Ç¤¹¡£    <sect1> IPCHAINS ¤Ë¤è¤ë¤µ¤é¤Ë¶¯¸Ç¤Ê IP ¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¡¦¥ë¡¼¥ë¥»¥Ã¥È <label id="Strong-IPCHAINS-Rulesets">  ¤³¤Î¾Ï¤Ç¤Ï¡¢ 2.2.x ·Ï¥«¡¼¥Í¥ë¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥Ä¡¼¥ë¤Ç¤¢¤ë IPCHAINS ¤Î ¾ÜºÙ¤Ê¥¬¥¤¥É¤òµ¤·¤Þ¤¹¡£ IPFWADM ¤Ë¤Ä¤¤¤Æ¤ÏÁ°½Ð¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  ¤³¤ÎÎã¤Ï¡¢¸ÇÄêÅª¤Ê IP ¥¢¥É¥ì¥¹¤ò»ý¤Ä PPP ÀÜÂ³¤ÎÇØ¸å¤Ë¤¢¤ë ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤È¥Þ¥¹¥«¥ì¡¼¥É¤Ç¤¹ (Æ°Åª¤Ë¥¢¥É¥ì¥¹¤òÍ¿¤¨¤é¤ì¤ë PPP ¤Î Ì¿Îá¤Ë¤Ä¤¤¤Æ¤Ï´Þ¤Þ¤ì¤Æ¤Ï¤¤¤Þ¤¹¤¬Í¸ú¤Ë¤Ï¤·¤Æ¤¤¤Þ¤»¤ó)¡£ ¿®Íê¤Ç¤¤ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Ï 192.168.0.1 ¤Ç¤¢¤ê¡¢ PPP ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î ¥¢¥É¥ì¥¹¤Ï¡Ö°¤¤ÅÛ¤é¡×¤«¤é¼é¤ë¤¿¤á¤Ë½ñ¤´¹¤¨¤Æ¤¤¤Þ¤¹¡£ ½ÐÆþ¤ê¤½¤ì¤¾¤ì¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ÏÊÌ¡¹¤ËÎóµó¤·¤Æ¤¤¤Þ¤¹¤¬¡¢ ¤³¤ì¤Ï ¥ë¡¼¥Æ¥£¥ó¥°¤ä¥Þ¥¹¥«¥ì¡¼¥É¤ò¤ï¤«¤ê¤ä¤¹¤¯¤¹¤ë°Ê³°¤Ë IP ¥¹¥×¡¼¥Õ¥£¥ó¥°¤äÉÔÀµ¤Ê¥ë¡¼¥Æ¥£¥ó¥°¤ò¸¡½Ð¤·¤ä¤¹¤¯¤¹¤ë¤¿¤á¤Î¤â¤Î¤Ç¤â ¤¢¤ê¤Þ¤¹¡£ ÌÀ³Î¤Ëµö²Ä¤µ¤ì¤Æ¤¤¤Ê¤¤¤â¤Î¤Ï<bf>¶Ø»ß</bf>¤Ç¤¹(¼ÂºÝ¤Ë¤ÏµñÀä¤µ¤ì¤Þ¤¹)¡£ ¤â¤·¡¢¤¢¤Ê¤¿¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É BOX ¤¬¡¢¤³¤Î rc.firewall ¥¹¥¯¥ê¥×¥È¤ò Æþ¤ì¤¿¤¢¤È¤Ç¤Þ¤È¤â¤ËÆ°¤«¤Ê¤¯¤Ê¤Ã¤¿¤È¤·¤¿¤é¡¢ /var/log/messages ¤¢¤ë¤¤¤Ï /var/adm/messages ¤Ë¤¢¤ë SYSLOG ¥Õ¥¡¥¤¥ë¤Ë²¿¤«¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë´Ø·¸¤Î ¥¨¥é¡¼¤¬¤Ê¤¤¤«³ÎÇ§¤·¤Æ¡¢ÀßÄê¤¬´Ö°ã¤Ã¤Æ¤¤¤Ê¤¤¤«¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£   PPP¤ä¥±¡¼¥Ö¥ë¥â¥Ç¥à¤Ê¤É¤ò»È¤Ã¤¿¡¢IPCHAINS ¤Ë¤è¤ë¤â¤Ã¤È¶¯¸Ç¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¼ÂÍÑÅª¤ÊÎã¤Ë¤Ä¤¤¤Æ¤Ï <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - Section 10"> ¤ä <htmlurl url="http://www.greatcircle.com/" name="GreatCircle's Firewall WWW page"> ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£  <bf>Ãí°Õ #1 - </bf>2.2.16°ÊÁ°¤Î Linux ¥«¡¼¥Í¥ë¤Ë¤Ï¡¢ TCP ÀÜÂ³¤Ç¥ë¡¼¥È¸¢¸Â ¤òÃ¥¼è¤µ¤ì¤ë´í¸±À¤¬¤¢¤ê¡¢¹¹¤Ë 2.2.11 °ÊÁ°¤Î¤â¤Î¤Ë¤Ï IPCHAINS ¤Î ¥Õ¥é¥°¥á¥ó¥Æ¡¼¥·¥ç¥ó¤Ë´Ø¤¹¤ë¥Ð¥°¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤Î¤¿¤á¡¢¶¯¸Ç¤Ê IPCHAINS ¥ë¡¼¥ë¥»¥Ã¥È¤ò²ÔÆ¯¤µ¤»¤ëºÝ¤Ë¤Ï¡¢¹¶·â¤ËÂÐ¤·¤Æ ÌµËÉÈ÷¤Ç¤¹¡£ ½¤Àµ¤µ¤ì¤¿¥Ð¡¼¥¸¥ç¥ó¤Î¥«¡¼¥Í¥ë¤ò»È¤Ã¤Æ¤¯¤À¤µ¤¤¡£  <bf>Ãí°Õ #2 - </bf> ¤â¤·¡¢TCP/IP¥¢¥É¥ì¥¹¤¬ PPP, ADSL, ¥±¡¼¥Ö¥ë¥â¥Ç¥à¤Ê¤É¤ò ·ÐÍ³¤·¤Æ ISP ¤«¤éÆ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë¾ì¹ç¤Ë¤Ï¡¢¤³¤Î¶¯¸Ç¤Ê¥ë¡¼¥ë¥»¥Ã¥È¤ò <bf>µ¯Æ°»þ¤ËÀßÄê¤¹¤ë¤³¤È¤Ï¤Ç¤¤Þ¤»¤ó</bf>¡£ ¤³¤Î¤è¤¦¤Ê¾ì¹ç¤Ë¤Ï¡¢IP ¥¢¥É¥ì¥¹¤¬³ä¤êÅö¤Æ¤é¤ì¤ëÅÙ¤Ë¤³¤Î ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥ë¡¼¥ë¥»¥Ã¥È¤òºÆÅÙÆÉ¤ß¹þ¤Þ¤»¤ë¤«¡¢¤¢¤ë¤¤¤Ï /ec/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤ò¤â¤Ã¤È¥¤¥ó¥Æ¥ê¥¸¥§¥ó¥È¤Ëºî¤ëÉ¬Í×¤¬ ¤¢¤ê¤Þ¤¹¡£ PPP ¥æ¡¼¥¶¤¬¤³¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÅ¬ÍÑ¤¹¤ë¾ì¹ç¤Ë¤Ï¡¢¸å½Ò¤¹¤ë "Dynamic PPP IP fetch" ¤È½ñ¤«¤ì¤¿ÉôÊ¬¤Î¥³¥á¥ó¥È¤òÃí°Õ¿¼¤¯Å¬ÀÚ¤Ë ³°¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤Þ¤¿¡¢¶¯¸Ç¤Ê¥ë¡¼¥ë¥»¥Ã¥ÈµÚ¤ÓÆ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤Ë¤Ä¤¤¤Æ¤Î ¤â¤Ã¤È¾Ü¤·¤¤²òÀâ¤Ï¡¢ <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - Section 10"> ¤Ë¤¢¤ê¤Þ¤¹¡£  <bf>¤Þ¤¿¡¢GUI ¥Ù¡¼¥¹¤Ç¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤ÎÀßÄê¤òÀ¸À®¤¹¤ë¤è¤¦¤Ê¥Ä¡¼¥ë¤¬ ¤¤¤¯¤Ä¤«Â¸ºß¤·¤Þ¤¹¡£ ¾ÜºÙ¤Ï <ref id="FAQ" name="¤è¤¯¤¢¤ë¼ÁÌä (FAQ)"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£</bf>  ºÇ¸å¤Ë¡¢¤â¤·ÀÅÅª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤ò»È¤Ã¤Æ¤¤¤ë¤Ê¤é¡¢°Ê²¼¤ÎÎã¤Î "ppp_ip="your.static.PPP.address"" ¤È¤Ê¤Ã¤Æ¤¤¤ëÉôÊ¬¤ò¤¢¤Ê¤¿¤Î IP ¥¢¥É¥ì¥¹¤Ë½ñ¤´¹¤¨¤Æ¤¯¤À¤µ¤¤¡£ ---------------------------------------------------------------- <label id="stronger-rc.firewall-2.2.x"> <![ %codes; CDATA [ <verb> #!/bin/sh #  # /etc/rc.d/rc.firewall - ¤ä¤ä¶¯¸Ç¤Ê IPCHAINS ¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¡¦¥ë¡¼¥ë¥»¥Ã¥È # PATH=/sbin:/bin:/usr/sbin:/usr/bin  # É¬Í×¤Ê¤¹¤Ù¤Æ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤ò¥í¡¼¥É¤¹¤ë  # Ãí°Õ - É¬Í×¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤À¤±¤ò¥í¡¼¥É¤·¤Þ¤¹¡£¤¹¤Ù¤Æ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤¬ # °Ê²¼¤Ëµ½Ò¤µ¤ì¤Æ¤¤¤Þ¤¹¤¬¡¢¥í¡¼¥É¤µ¤ì¤Ê¤¤¤è¤¦¤Ë¥³¥á¥ó¥È¤È¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£  # ¥â¥¸¥å¡¼¥ë¤òºÇ½é¤Ë¥í¡¼¥É¤¹¤ë»þ¤Ë¤Þ¤ºÉ¬Í× # /sbin/depmod -a  # PORT Êý¼°¤ò»È¤Ã¤ÆFTP ¥Õ¥¡¥¤¥ëÅ¾Á÷¤Ë¤ª¤±¤ëÅ¬ÀÚ¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹ # /sbin/modprobe ip_masq_ftp  # UDP ¥×¥í¥È¥³¥ë¤ò·ÐÍ³¤·¤¿¡¢RealAudio ¤Î¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹¡£¤³¤Î¥â¥¸¥å¡¼¥ë¤¬¤Ê¤¯¤Æ¤â # RealAudio ¤Ï TCP ¥â¡¼¥É¤ÇÆ°ºî¤·¤Þ¤¹¤¬¡¢²»¼Á¤ÏÄã²¼¤·¤Þ¤¹¡£ # /sbin/modprobe ip_masq_raudio  # IRC DCC ¥Õ¥¡¥¤¥ëÅ¾Á÷¤Î¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹ # #/sbin/modprobe ip_masq_irc  # °Ê²¼¤Î»ØÄê¤Ë¤è¤Ã¤Æ Quake ¤È QuakeWorld ¤ò¥Ç¥Õ¥©¥ë¥È¤ÇÄó¶¡¤·¤Þ¤¹¡£¤³¤Î¥â¥¸¥å¡¼¥ë¤Ï Linux # ¤Î ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥Ü¥Ã¥¯¥¹¤«¤éÆâÂ¦¤ÎÊ£¿ô¥æ¡¼¥¶¤¬Â¸ºß¤¹¤ë¾ì¹ç¤Î¤¿¤á¤Î¤â¤Î¤Ç¤¹¡£ # ¤â¤·¡¢Quake I, II, ¤¢¤ë¤¤¤Ï III ¤ò»È¤¤¤¿¤¤¤Ê¤é¤Ð¡¢£²ÈÖÌÜ¤ÎÎã¤ò»È¤Ã¤Æ¤¯¤À¤µ¤¤¡£ # # Ãí°Õ - ¤â¤·¡¢QUAKE ¥â¥¸¥å¡¼¥ë¤Î¥í¡¼¥É»þ¤Ë¥¨¥é¡¼¤¬½Ð¤¿¾ì¹ç¤Ï¡¢¸Å¤¤¥Ð¥°¤Î # ------ ¤¢¤ë¥«¡¼¥Í¥ë¤¬Æ°¤¤¤Æ¤¤¤Þ¤¹¡£ # ¤½¤Î¾ì¹ç¤Ï¤è¤ê¿·¤·¤¤¥«¡¼¥Í¥ë¤ËÃÖ¤´¹¤¨¤Æ¤¯¤À¤µ¤¤¡£ # #Quake I / QuakeWorld (ports 26000 and 27000) #/sbin/modprobe ip_masq_quake # #Quake I/II/III / QuakeWorld (ports 26000, 27000, 27910, 27960) #/sbin/modprobe ip_masq_quake 26000,27000,27910,27960  # CuSeeme ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥¨¥¢¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡ # #/sbin/modprobe ip_masq_cuseeme  # VDO-Live ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥¨¥¢¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡ # #/sbin/modprobe ip_masq_vdolive  #Èó¾ï¤Ë½ÅÍ× - IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤ÏÌµ¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤Î¤Ç¡¢Í¸ú¤Ë¤·¤Þ¤¹¡£ # # Redhat ¥æ¡¼¥¶¤Î¾ì¹ç¤Ï¡¢/etc/sysconfig/network ¤Î¥ª¥×¥·¥ç¥ó»ØÄê¹Ô¤ò # # FORWARD_IPV4=false # ¤«¤é # FORWARD_IPV4=true # ¤ËÊÑ¹¹¤·¤Æ¤¯¤À¤µ¤¤¡£ # echo "1" > /proc/sys/net/ipv4/ip_forward  #Èó¾ï¤Ë½ÅÍ× - 2.2.x ¥«¡¼¥Í¥ë¤Ç¤Ï IP ¥Ç¥Õ¥é¥°¥á¥ó¥Æ¡¼¥·¥ç¥ó¤Î¥µ¥Ý¡¼¥È¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤ÏÌµ¸ú¤Ç¤¹¡£ # # ¥³¥ó¥Ñ¥¤¥ë»þ¤Î»ØÄê¤Ë¤è¤ë¤â¤Î¤Ç¤¹¤¬¡¢2.2.12 ¥«¡¼¥Í¥ë°Ê¹ß¤ÏÊÑ¹¹¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ # ¤Þ¤¿¡¢¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ë¤è¤Ã¤Æ¤Ï /proc ¥Æ¡¼¥Ö¥ë¤«¤é # ¤³¤Î¥ª¥×¥·¥ç¥ó¤¬½ü³°¤µ¤ì¤Æ¤¤¤ë¤³¤È¤â¤¢¤ê¤Þ¤¹¤Î¤Ç¡¢¤½¤Î¾ì¹ç¤Ï # /proc ¥Ç¥£¥ì¥¯¥È¥ê¤ËÂ¸ºß¤·¤Ê¤±¤ì¤Ðµ¤¤Ë¤·¤Ê¤¯¤Æ¤â¹½¤¤¤Þ¤»¤ó¡£ # echo "1" > /proc/sys/net/ipv4/ip_always_defrag  # Æ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤¹¤ë¥æ¡¼¥¶¸þ¤± - # # IP ¥¢¥É¥ì¥¹¤ò SLIP, PPP, DHCP ¤Ê¤É¤«¤éÆ°Åª¤Ë¼èÆÀ¤¹¤ë¾ì¹ç¤Ï¡¢¼¡¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¡¢IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÇÆ°Åª IP ¥¢¥É¥ì¥¹¤ÎÁàºî¤òµö²Ä¤·¡¢Diald ¤äÆ±ÍÍ¤Ê¥×¥í¥°¥é¥à¤Î # »ÈÍÑ¤ò¤è¤êÍÆ°×¤Ë¤¹¤ë¤â¤Î¤Ç¤¹¡£ #echo "1" > /proc/sys/net/ipv4/ip_dynaddr  # ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤òÉ¬Í×¤È¤¹¤ë¡¢¤¤¤¯¤Ä¤«¤Î¥×¥í¥°¥é¥à¤ËÂÐ¤¹¤ë LooseUDP ¥Ñ¥Ã¥Á¤òÍ¸ú¤Ë¤¹¤ë # # IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò·ÐÍ³¤·¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥²¡¼¥à¤òÆ°¤«¤½¤¦¤È¤·¤Æ¤¤¤Æ¡¢¤É¤¦¤·¤Æ¤â¤½¤ì¤¬Æ°¤«¤Ê¤¤¤È¤¤¤¦ # ¤Î¤Ê¤é¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤(°Ê²¼¤Î "#" ¤òºï½ü¤·¤Þ¤¹)¡£UDP ¥Ý¡¼¥È¥¹¥¥ã¥ó¤Ë # ÂÐ¤¹¤ëÀÈ¼åÀ¤Î²ÄÇ½À¤¬¤¢¤ë¤Î¤Ç¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¶Ø»ß¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ # #echo "1" > /proc/sys/net/ipv4/ip_masq_udp_dloose  # ¤¢¤Ê¤¿¤ÎÀÅÅª¤Ê IP ¥¢¥É¥ì¥¹¤ò°Ê²¼¤Ë»ØÄê¤·¤Þ¤¹ #  # Æ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤¹¤ë¤Ê¤é¡¢¿·¤·¤¤ IP ¥¢¥É¥ì¥¹¤¬³ä¤êÅö¤Æ¤é¤ì¤ë¤¿¤Ó¤ËÅ¬ÍÑ # ¤¹¤ë¤è¤¦¤Ë¡¢¥ë¡¼¥ë¥»¥Ã¥È¤ò½ñ¤´¹¤¨¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£¤½¤Î¤¿¤á¤Ë¤Ï¡¢¡¢°Ê²¼¤Î¤è¤¦¤Ê°ì¹Ô¤Î¥¹¥¯¥ê¥×¥È¤ò # Í¸ú¤Ë¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£¡Ê¥¹¥¯¥ê¥×¥ÈÎãÆâ¤Î°ì½Å°úÍÑÉä¤ÈÆó½Å°úÍÑÉä¤Î°ã¤¤¤Ï°ÕÌ£¤ò»ý¤Á¤Þ¤¹¤Î¤ÇÃí°Õ¡Ë # #  # DHCP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # ----------- # TCP/IP ¥¢¥É¥ì¥¹¤ò DHCP ¤«¤é¼èÆÀ¤¹¤ë¾ì¹ç¤Ï¡¢ppp ¥»¥¯¥·¥ç¥ó¤Î²¼¤Ë¤¢¤ë"#"¤Ç¥³¥á¥ó¥È¥¢¥¦¥È¤µ¤ì¤¿ # ÉôÊ¬¤òÍ¸ú¤Ë¤·¡¢"ppp0" ¤È¤¢¤ëÉôÊ¬¤ò¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³ÍÑ¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ÎÌ¾Á°¤ËÃÖ¤´¹¤¨¤Ê¤±¤ì¤Ð # ¤Ê¤ê¤Þ¤»¤ó(¤¿¤È¤¨¤Ð¡¢eth0 ¤ä eth1 ¤Ê¤É¤Ë¡Ë¡£ # DHCP ¤Ï³ä¤êÅö¤Æ¤¿ IP ¥¢¥É¥ì¥¹¤ò¿ï»þÊÑ¹¹¤¹¤ë¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£¤³¤ÎÊÑ¹¹¤òÀµ¤·¤¯È¿±Ç¤µ¤»¤ë¤Ë¤Ï # DHCP ¥ê¡¼¥¹¤¬¹¹¿·¤µ¤ì¤ë¤¿¤Ó¤Ë¡¢DHCP ¥¯¥é¥¤¥¢¥ó¥È¤òºÆÅÙ¼Â¹Ô¤·¤Æ¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¥ë¡¼¥ë¥»¥Ã¥È¤òÈ¿±Ç # ¤µ¤»¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ #  # Ãí°Õ 1 - ¤¤¤¯¤Ä¤«¤Î DHCP ¥¯¥é¥¤¥¢¥ó¥È¤Ï¸Å¤¤¥Ð¡¼¥¸¥ç¥ó¤Î "pump" ¤Ç¡Ê¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó # ¤Ç¤ÏÌäÂêÅÀ¤Ï½¤Àµ¤µ¤ì¤Æ¤¤¤Þ¤¹¡Ë¡¢¤½¤ì¤Ï¥ê¡¼¥¹¹¹¿·¸å¤Ë¥¹¥¯¥ê¥×¥È¤ò¼Â¹Ô¤¹¤ë¤³¤È¤¬ # ¤Ç¤¤Ê¤¤¤â¤Î¤Ç¤¹¡£¤½¤Î¾ì¹ç¤Ï¡¢"dhcpcd" ¤« "dhclient" ¤ËÃÖ¤´¹¤¨¤Ê¤±¤ì¤Ð # ¤Ê¤ê¤Þ¤»¤ó¡£ #  # Ãí°Õ 2 - "dhcpcd" ¤ÏºÇ¶á¤Î¥Ð¡¼¥¸¥ç¥ó¤Ç¤Ï¡¢¥³¥Þ¥ó¥ÉÊ¸Ë¡¤¬ÊÑ¤ï¤Ã¤Æ¤¤¤Þ¤¹¡£ # # µì¥Ð¡¼¥¸¥ç¥ó¤Ç¤Î»ØÄêÊýË¡¤Ï¡¢¼¡¤Î¤è¤¦¤Ê¤â¤Î¤Ç¤·¤¿ - # dhcpcd -c /etc/rc.d/rc.firewall eth0 # # ¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó¤Ç¤Ï¼¡¤Î¤è¤¦¤Ë»ØÄê¤·¤Þ¤¹ - # dhcpcd eth0 /etc/rc.d/rc.firewall # #  # Ãí°Õ 3 - Pump ¤ò»È¤¦¾ì¹ç¡¢/etc/pump.conf ¥Õ¥¡¥¤¥ë¤Ë¼¡¤Îµ½Ò¤òÄÉ²Ã¤·¤Æ¤¯¤À¤µ¤¤¡£ # # script /etc/rc.d/rc.firewall #  # PPP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # ---------- # ¤ªµ¤¤Å¤¤Ç¤Ï¤Ê¤¤¤«¤â¤·¤ì¤Þ¤»¤ó¤¬¡¢PPP ÀÜÂ³¤¬¹Ô¤ï¤ì¤ë¤¿¤Ó¤Ë¡¢/etc/ppp/ip-up ¥¹¥¯¥ê¥×¥È¤¬ # ¾ï¤ËÆ°ºî¤·¤Þ¤¹¡£¤³¤Î¤³¤È¤òÍøÍÑ¤·¤Æ¡¢¿·¤·¤¤ IP ¥¢¥É¥ì¥¹¤Î¼èÆÀ¤È¶¯¸Ç¤Ê¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¡¦¥ë¡¼¥ë # ¥»¥Ã¥È¤ÎºÆÀßÄê¤ò¹Ô¤¤¤Þ¤¹¡£ # # ¤â¤·¡¢/etc/ppp/ip-up ¤¬¤¹¤Ç¤ËÂ¸ºß¤·¤Æ¤¤¤ë¤Ê¤é¡¢¤½¤ì¤òÊÔ½¸¤·¤Æ"/etc/rc.d/rc.firewall" # ¤È¤¤¤¦µ½Ò¤òºÇ¸å¤Î¤¢¤¿¤ê¤ËÄÉ²Ã¤¹¤ë¤è¤¦¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # # ¤â¤·¡¢/etc/ppp/ip-up ¥¹¥¯¥ê¥×¥È¤¬Â¸ºß¤·¤Ê¤«¤Ã¤¿¤Ê¤é¡¢/etc/rc.d/rc.firewall ¥¹¥¯¥ê¥×¥È # ¤ò¼Â¹Ô¤¹¤ë¤¿¤á¤Î¼¡¤Î¤è¤¦¤Ê¥ê¥ó¥¯¤òºîÀ®¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ # # ln -s /etc/rc.d/rc.firewall /etc/ppp/ip-up # # * Â³¤¤¤Æ¡¢°Ê²¼¤Î¥³¥á¥ó¥È¥¢¥¦¥È¤µ¤ì¤¿¥·¥§¥ë¥³¥Þ¥ó¥É¤òÉ¬Í×¤Ë±þ¤¸¤ÆÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤ * #  # PPP µÚ¤Ó DHCP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # ------------------- # ¼¡¤Î¹Ô¤Î "#" ¤òºï½ü¤·¤Æ¡¢¤½¤Î¼¡¤Î¹Ô¤ÎÀèÆ¬¤Ë "#" ¤òÆþ¤ì¤Æ¤¯¤À¤µ¤¤¡£ #extip="`/sbin/ifconfig ppp0 | grep 'inet addr' | awk '{print $2}' | sed -e 's/.*://'`"  # ÀÅÅª¤Ê IP ¥¢¥É¥ì¥¹¤Ç PPP ¤ò»È¤¦¾ì¹ç - # extip="your.static.PPP.address"  # PPP ¤È DHCP ¤ò»È¤¦¾ì¹ç¤Ï¡¢É¬¤º¤³¤ÎÉôÊ¬¤ËÀµ¤·¤¤³°Éô¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ÎÌ¾Á°¤ò»ØÄê¤·¤Þ¤¹ extint="ppp0"  # ÆâÉô¤Î IP ¥¢¥É¥ì¥¹¤Î³ä¤êÅö¤Æ¤ò»ØÄê¤·¤Þ¤¹ intint="eth0" intnet="192.168.0.0/24"  # ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥¿¥¤¥à¥¢¥¦¥È # # 2 »þ´Ö= TCP ¥»¥Ã¥·¥ç¥ó # 10 ÉÃ¡¡= TCP/IP ¤Î "FIN" ¥Ñ¥±¥Ã¥È¤¬¼õ¿®¤µ¤ì¤¿¤¢¤È¤Î¥È¥é¥Õ¥£¥Ã¥¯ # 60 ÉÃ¡¡= UDP ¥È¥é¥Õ¥£¥Ã¥¯ (¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿´Ä¶¤Ç¤Î ICQ ÍøÍÑ¼Ô¤Ï ICQ ¼«ÂÎ¤ÎÀßÄê¤ÎÃæ¤Ç # 30ÉÃ¤Î¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¥¿¥¤¥à¥¢¥¦¥È¤ò»ØÄê¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó) # # ipchains -M -S 7200 10 60 #############################################################################  # ÅþÃå¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # µñÀä¡ÚÌõÃí: reject¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢µñÀä¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ë # ºÇ½ª¥ë¡¼¥ë¤òÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£ # ¡ÚÌõÃí: ¥ë¡¼¥ë¤ò REJECT ¤Ë¤¹¤ë¤È¡¢¥ë¡¼¥ë¤Ë¹çÃ×¤·¤¿¥Ñ¥±¥Ã¥È¤òÇË´þ¤·¤Æ¡¢ # "destination-unreachable" (ÌÜÅªÃÏ¤ËÅþÃ£¤·¤Ê¤¤) ¤È¤¤¤¦ ICMP ¥Ñ¥±¥Ã¥È¤ò # Áê¼êÂ¦ (Á÷¿®¸µ¥¢¥É¥ì¥¹¤Î¥Þ¥·¥ó) ¤ËÈ¯¿®¤·¤Þ¤¹¡£ # DENY ¤Ë¤¹¤ë¤È¡¢"destination-unreachable" ¥Ñ¥±¥Ã¥È¤â½Ð¤µ¤º¤Ë¡¢¼õ¿®¤·¤¿ # ¥Ñ¥±¥Ã¥È¤òÃ±¤ËÇË´þ¤·¤Þ¤¹¡£ # ipchains -F input ipchains -P input REJECT  # ¥í¡¼¥«¥ë¥Þ¥·¥óÂ¦¤«¤é¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ËÆþ¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢¤É¤³¤Ë # ¸þ¤«¤¦¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # ipchains -A input -i $intint -s $intnet -d 0.0.0.0/0 -j ACCEPT  # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤«¤éÆþ¤Ã¤ÆÍè¤ë IP ¥¹¥×¡¼¥Õ¥£¥ó¥°¡ÚÌõÃí: IP µ¶Áõ¡Û # ¥Ñ¥±¥Ã¥È¤äÌÂ»Ò¥Ñ¥±¥Ã¥È¤Ï¡¢ËÜÍè¤Ê¤é¥í¡¼¥«¥ë¥Þ¥·¥ó¤«¤é¤Ç¤¢¤ë¤Ù¤¤â¤Î¤Ê¤Î¤Ç¡¢ # µñÀä¤¹¤ë¡£ # ipchains -A input -i $extint -s $intnet -d 0.0.0.0/0 -l -j REJECT  # ¥ê¥â¡¼¥È¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤ËÆþ¤Ã¤ÆÍè¤ë¡¢°¸Àè¥¢¥É¥ì¥¹¤¬ PPP ¥¢¥É¥ì¥¹¤Î # ¥Ñ¥±¥Ã¥È¤Ï¡¢¤É¤ÎÈ¯¿®¸µ¥¢¥É¥ì¥¹¤«¤é¤Î¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # ¡ÚÌõÃí: °Ê²¼¤Î¥³¥Þ¥ó¥É¤ÎÁ°¤Ë¡¢ # ipchains -A input -i $extint -S 0/0 -d $extip/32 -p tcp -y -j DENY -l # ¤¬¤¢¤ë¤«¡¢°¿¤Ï°Ê²¼¤Î¥³¥Þ¥ó¥É¤¬ # ipchains -A input -i $extint -S 0/0 -d $extip/32 -p tcp ! -y -j ACCEPT # ¤È¤Ê¤Ã¤Æ¤¤¤ëÊý¤¬¤è¤ê¹¥¤Þ¤·¤¤¤È»×¤¤¤Þ¤¹¡£¡Û # ipchains -A input -i $extint -s 0.0.0.0/0 -d $extip/32 -j ACCEPT  # ¥ë¡¼¥×¥Ð¥Ã¥¯¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤òÍ¸ú¤È¤¹¤ë # ipchains -A input -i lo -s 0.0.0.0/0 -d 0.0.0.0/0 -j ACCEPT  # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÅþÃå¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£¥Ý¥ê¥·¡¼¤Ë¤Ï # ¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤¬¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤òÂå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë # ¤Ê¤ë¡£ # ipchains -A input -s 0.0.0.0/0 -d 0.0.0.0/0 -l -j REJECT  # Á÷½Ð¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # µñÀä¡ÚÌõÃí: reject¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢µñÀä¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ëºÇ½ª¥ë¡¼¥ë¤ò # ÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£ # ipchains -F output ipchains -P output REJECT  # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤«¤é½ÐÎÏ¤µ¤ì¤ë¡¢¥í¡¼¥«¥ë¥Í¥Ã¥È¤Ø¸þ¤«¤¦¥Ñ¥±¥Ã¥È¤Ï # ¤É¤³¤«¤é¤Î¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # ipchains -A output -i $intint -s 0.0.0.0/0 -d $intnet -j ACCEPT  # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¥í¡¼¥«¥ë¥Í¥Ã¥È¤ØÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢ # µ¶Áõ¥ë¡¼¥Æ¥£¥ó¥°¤Ê¤Î¤Ç¡¢µñÀä¤¹¤ë¡£ # ipchains -A output -i $extint -s 0.0.0.0/0 -d $intnet -l -j REJECT  # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤éÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢ # ¤¢¤êÆÀ¤Ê¤¤¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ê¤Î¤Ç¡¢µñÀä¤¹¤ë¡£ # ipchains -A output -i $extint -s $intnet -d 0.0.0.0/0 -l -j REJECT  # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤«¤é¤Î¤½¤ì°Ê³°¤ÎÁ÷½Ð¥Ñ¥±¥Ã¥È¤ÏÍ¸ú # ipchains -A output -i $extint -s $extip/32 -d 0.0.0.0/0 -j ACCEPT  # ¥ë¡¼¥×¥Ð¥Ã¥¯¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤òÍ¸ú¤È¤¹¤ë¡£ # ipchains -A output -i lo -s 0.0.0.0/0 -d 0.0.0.0/0 -j ACCEPT  # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÁ÷½Ð¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£ # ¥Ý¥ê¥·¡¼¤Ë¤Ï¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤Ï¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤ò # Âå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë¤Ê¤ë¡£ # ipchains -A output -s 0.0.0.0/0 -d 0.0.0.0/0 -l -j REJECT #############################################################################  # Å¾Á÷¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # ÈÝÄê¡ÚÌõÃí: deny¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢ÈÝÄê¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ëºÇ½ª¥ë¡¼¥ë¤ò # ÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£ # ipchains -F forward ipchains -P forward DENY  # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Ç¤Î¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤é¤½¤ÎÂ¾¤Î°¸Àè¤Ø¤Î¥Ñ¥±¥Ã¥È¤ò¥Þ¥¹¥«¥ì¡¼¥É¤¹¤ë # ipchains -A forward -i $extint -s $intnet -d 0.0.0.0/0 -j MASQ #  # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÅ¾Á÷¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£ # ¥Ý¥ê¥·¡¼¤Ë¤Ï¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤Ï¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤ò # Âå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë¤Ê¤ë¡£ # ipchains -A forward -s 0.0.0.0/0 -d 0.0.0.0/0 -l -j REJECT  # ¥Õ¥¡¥¤¥ë¤Î½ª¤ï¤ê </verb> ]]> <verb> #!/bin/sh # # /etc/rc.d/rc.firewall - ¤ä¤ä¶¯¸Ç¤Ê IPCHAINS ¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¡¦¥ë¡¼¥ë¥»¥Ã¥È # PATH=/sbin:/bin:/usr/sbin:/usr/bin # É¬Í×¤Ê¤¹¤Ù¤Æ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤ò¥í¡¼¥É¤¹¤ë # # Ãí°Õ - É¬Í×¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤À¤±¤ò¥í¡¼¥É¤·¤Þ¤¹¡£¤¹¤Ù¤Æ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤¬ # °Ê²¼¤Ëµ½Ò¤µ¤ì¤Æ¤¤¤Þ¤¹¤¬¡¢¥í¡¼¥É¤µ¤ì¤Ê¤¤¤è¤¦¤Ë¥³¥á¥ó¥È¤È¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£ # ¥â¥¸¥å¡¼¥ë¤òºÇ½é¤Ë¥í¡¼¥É¤¹¤ë»þ¤Ë¤Þ¤ºÉ¬Í× # /sbin/depmod -a # PORT Êý¼°¤ò»È¤Ã¤ÆFTP ¥Õ¥¡¥¤¥ëÅ¾Á÷¤Ë¤ª¤±¤ëÅ¬ÀÚ¤Ê IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹ # /sbin/modprobe ip_masq_ftp # UDP ¥×¥í¥È¥³¥ë¤ò·ÐÍ³¤·¤¿¡¢RealAudio ¤Î¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹¡£¤³¤Î¥â¥¸¥å¡¼¥ë¤¬¤Ê¤¯¤Æ¤â # RealAudio ¤Ï TCP ¥â¡¼¥É¤ÇÆ°ºî¤·¤Þ¤¹¤¬¡¢²»¼Á¤ÏÄã²¼¤·¤Þ¤¹¡£ # /sbin/modprobe ip_masq_raudio # IRC DCC ¥Õ¥¡¥¤¥ëÅ¾Á÷¤Î¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡¤·¤Þ¤¹ # #/sbin/modprobe ip_masq_irc # °Ê²¼¤Î»ØÄê¤Ë¤è¤Ã¤Æ Quake ¤È QuakeWorld ¤ò¥Ç¥Õ¥©¥ë¥È¤ÇÄó¶¡¤·¤Þ¤¹¡£¤³¤Î¥â¥¸¥å¡¼¥ë¤Ï Linux # ¤Î ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥Ü¥Ã¥¯¥¹¤«¤éÆâÂ¦¤ÎÊ£¿ô¥æ¡¼¥¶¤¬Â¸ºß¤¹¤ë¾ì¹ç¤Î¤¿¤á¤Î¤â¤Î¤Ç¤¹¡£ # ¤â¤·¡¢Quake I, II, ¤¢¤ë¤¤¤Ï III ¤ò»È¤¤¤¿¤¤¤Ê¤é¤Ð¡¢£²ÈÖÌÜ¤ÎÎã¤ò»È¤Ã¤Æ¤¯¤À¤µ¤¤¡£ # # Ãí°Õ - ¤â¤·¡¢QUAKE ¥â¥¸¥å¡¼¥ë¤Î¥í¡¼¥É»þ¤Ë¥¨¥é¡¼¤¬½Ð¤¿¾ì¹ç¤Ï¡¢¸Å¤¤¥Ð¥°¤Î # ------ ¤¢¤ë¥«¡¼¥Í¥ë¤¬Æ°¤¤¤Æ¤¤¤Þ¤¹¡£ # ¤½¤Î¾ì¹ç¤Ï¤è¤ê¿·¤·¤¤¥«¡¼¥Í¥ë¤ËÃÖ¤´¹¤¨¤Æ¤¯¤À¤µ¤¤¡£ # #Quake I / QuakeWorld (ports 26000 and 27000) #/sbin/modprobe ip_masq_quake # #Quake I/II/III / QuakeWorld (ports 26000, 27000, 27910, 27960) #/sbin/modprobe ip_masq_quake 26000,27000,27910,27960 # CuSeeme ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥¨¥¢¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡ # #/sbin/modprobe ip_masq_cuseeme # VDO-Live ¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥¨¥¢¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤òÄó¶¡ # #/sbin/modprobe ip_masq_vdolive #Èó¾ï¤Ë½ÅÍ× - IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤ÏÌµ¸ú¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤Î¤Ç¡¢Í¸ú¤Ë¤·¤Þ¤¹¡£ # # Redhat ¥æ¡¼¥¶¤Î¾ì¹ç¤Ï¡¢/etc/sysconfig/network ¤Î¥ª¥×¥·¥ç¥ó»ØÄê¹Ô¤ò # # FORWARD_IPV4=false # ¤«¤é # FORWARD_IPV4=true # ¤ËÊÑ¹¹¤·¤Æ¤¯¤À¤µ¤¤¡£ # echo "1" > /proc/sys/net/ipv4/ip_forward #Èó¾ï¤Ë½ÅÍ× - 2.2.x ¥«¡¼¥Í¥ë¤Ç¤Ï IP ¥Ç¥Õ¥é¥°¥á¥ó¥Æ¡¼¥·¥ç¥ó¤Î¥µ¥Ý¡¼¥È¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤ÏÌµ¸ú¤Ç¤¹¡£ # # ¥³¥ó¥Ñ¥¤¥ë»þ¤Î»ØÄê¤Ë¤è¤ë¤â¤Î¤Ç¤¹¤¬¡¢2.2.12 ¥«¡¼¥Í¥ë°Ê¹ß¤ÏÊÑ¹¹¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ # ¤Þ¤¿¡¢¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ë¤è¤Ã¤Æ¤Ï /proc ¥Æ¡¼¥Ö¥ë¤«¤é # ¤³¤Î¥ª¥×¥·¥ç¥ó¤¬½ü³°¤µ¤ì¤Æ¤¤¤ë¤³¤È¤â¤¢¤ê¤Þ¤¹¤Î¤Ç¡¢¤½¤Î¾ì¹ç¤Ï # /proc ¥Ç¥£¥ì¥¯¥È¥ê¤ËÂ¸ºß¤·¤Ê¤±¤ì¤Ðµ¤¤Ë¤·¤Ê¤¯¤Æ¤â¹½¤¤¤Þ¤»¤ó¡£ # echo "1" > /proc/sys/net/ipv4/ip_always_defrag # Æ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤¹¤ë¥æ¡¼¥¶¸þ¤± - # # IP ¥¢¥É¥ì¥¹¤ò SLIP, PPP, DHCP ¤Ê¤É¤«¤éÆ°Åª¤Ë¼èÆÀ¤¹¤ë¾ì¹ç¤Ï¡¢¼¡¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¡¢IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÇÆ°Åª IP ¥¢¥É¥ì¥¹¤ÎÁàºî¤òµö²Ä¤·¡¢Diald ¤äÆ±ÍÍ¤Ê¥×¥í¥°¥é¥à¤Î # »ÈÍÑ¤ò¤è¤êÍÆ°×¤Ë¤¹¤ë¤â¤Î¤Ç¤¹¡£ #echo "1" > /proc/sys/net/ipv4/ip_dynaddr # ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤òÉ¬Í×¤È¤¹¤ë¡¢¤¤¤¯¤Ä¤«¤Î¥×¥í¥°¥é¥à¤ËÂÐ¤¹¤ë LooseUDP ¥Ñ¥Ã¥Á¤òÍ¸ú¤Ë¤¹¤ë # # IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò·ÐÍ³¤·¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥²¡¼¥à¤òÆ°¤«¤½¤¦¤È¤·¤Æ¤¤¤Æ¡¢¤É¤¦¤·¤Æ¤â¤½¤ì¤¬Æ°¤«¤Ê¤¤¤È¤¤¤¦ # ¤Î¤Ê¤é¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤(°Ê²¼¤Î "#" ¤òºï½ü¤·¤Þ¤¹)¡£UDP ¥Ý¡¼¥È¥¹¥¥ã¥ó¤Ë # ÂÐ¤¹¤ëÀÈ¼åÀ¤Î²ÄÇ½À¤¬¤¢¤ë¤Î¤Ç¡¢¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¶Ø»ß¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ # #echo "1" > /proc/sys/net/ipv4/ip_masq_udp_dloose # ¤¢¤Ê¤¿¤ÎÀÅÅª¤Ê IP ¥¢¥É¥ì¥¹¤ò°Ê²¼¤Ë»ØÄê¤·¤Þ¤¹ # # Æ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤ë IP ¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤¹¤ë¤Ê¤é¡¢¿·¤·¤¤ IP ¥¢¥É¥ì¥¹¤¬³ä¤êÅö¤Æ¤é¤ì¤ë¤¿¤Ó¤ËÅ¬ÍÑ # ¤¹¤ë¤è¤¦¤Ë¡¢¥ë¡¼¥ë¥»¥Ã¥È¤ò½ñ¤´¹¤¨¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£¤½¤Î¤¿¤á¤Ë¤Ï¡¢¡¢°Ê²¼¤Î¤è¤¦¤Ê°ì¹Ô¤Î¥¹¥¯¥ê¥×¥È¤ò # Í¸ú¤Ë¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£¡Ê¥¹¥¯¥ê¥×¥ÈÎãÆâ¤Î°ì½Å°úÍÑÉä¤ÈÆó½Å°úÍÑÉä¤Î°ã¤¤¤Ï°ÕÌ£¤ò»ý¤Á¤Þ¤¹¤Î¤ÇÃí°Õ¡Ë # # # DHCP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # ----------- # TCP/IP ¥¢¥É¥ì¥¹¤ò DHCP ¤«¤é¼èÆÀ¤¹¤ë¾ì¹ç¤Ï¡¢ppp ¥»¥¯¥·¥ç¥ó¤Î²¼¤Ë¤¢¤ë"#"¤Ç¥³¥á¥ó¥È¥¢¥¦¥È¤µ¤ì¤¿ # ÉôÊ¬¤òÍ¸ú¤Ë¤·¡¢"ppp0" ¤È¤¢¤ëÉôÊ¬¤ò¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³ÍÑ¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ÎÌ¾Á°¤ËÃÖ¤´¹¤¨¤Ê¤±¤ì¤Ð # ¤Ê¤ê¤Þ¤»¤ó(¤¿¤È¤¨¤Ð¡¢eth0 ¤ä eth1 ¤Ê¤É¤Ë¡Ë¡£ # DHCP ¤Ï³ä¤êÅö¤Æ¤¿ IP ¥¢¥É¥ì¥¹¤ò¿ï»þÊÑ¹¹¤¹¤ë¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£¤³¤ÎÊÑ¹¹¤òÀµ¤·¤¯È¿±Ç¤µ¤»¤ë¤Ë¤Ï # DHCP ¥ê¡¼¥¹¤¬¹¹¿·¤µ¤ì¤ë¤¿¤Ó¤Ë¡¢DHCP ¥¯¥é¥¤¥¢¥ó¥È¤òºÆÅÙ¼Â¹Ô¤·¤Æ¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¥ë¡¼¥ë¥»¥Ã¥È¤òÈ¿±Ç # ¤µ¤»¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ # # Ãí°Õ 1 - ¤¤¤¯¤Ä¤«¤Î DHCP ¥¯¥é¥¤¥¢¥ó¥È¤Ï¸Å¤¤¥Ð¡¼¥¸¥ç¥ó¤Î "pump" ¤Ç¡Ê¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó # ¤Ç¤ÏÌäÂêÅÀ¤Ï½¤Àµ¤µ¤ì¤Æ¤¤¤Þ¤¹¡Ë¡¢¤½¤ì¤Ï¥ê¡¼¥¹¹¹¿·¸å¤Ë¥¹¥¯¥ê¥×¥È¤ò¼Â¹Ô¤¹¤ë¤³¤È¤¬ # ¤Ç¤¤Ê¤¤¤â¤Î¤Ç¤¹¡£¤½¤Î¾ì¹ç¤Ï¡¢"dhcpcd" ¤« "dhclient" ¤ËÃÖ¤´¹¤¨¤Ê¤±¤ì¤Ð # ¤Ê¤ê¤Þ¤»¤ó¡£ # # Ãí°Õ 2 - "dhcpcd" ¤ÏºÇ¶á¤Î¥Ð¡¼¥¸¥ç¥ó¤Ç¤Ï¡¢¥³¥Þ¥ó¥ÉÊ¸Ë¡¤¬ÊÑ¤ï¤Ã¤Æ¤¤¤Þ¤¹¡£ # # µì¥Ð¡¼¥¸¥ç¥ó¤Ç¤Î»ØÄêÊýË¡¤Ï¡¢¼¡¤Î¤è¤¦¤Ê¤â¤Î¤Ç¤·¤¿ - # dhcpcd -c /etc/rc.d/rc.firewall eth0 # # ¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó¤Ç¤Ï¼¡¤Î¤è¤¦¤Ë»ØÄê¤·¤Þ¤¹ - # dhcpcd eth0 /etc/rc.d/rc.firewall # # # Ãí°Õ 3 - Pump ¤ò»È¤¦¾ì¹ç¡¢/etc/pump.conf ¥Õ¥¡¥¤¥ë¤Ë¼¡¤Îµ½Ò¤òÄÉ²Ã¤·¤Æ¤¯¤À¤µ¤¤¡£ # # script /etc/rc.d/rc.firewall # # PPP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # ---------- # ¤ªµ¤¤Å¤¤Ç¤Ï¤Ê¤¤¤«¤â¤·¤ì¤Þ¤»¤ó¤¬¡¢PPP ÀÜÂ³¤¬¹Ô¤ï¤ì¤ë¤¿¤Ó¤Ë¡¢/etc/ppp/ip-up ¥¹¥¯¥ê¥×¥È¤¬ # ¾ï¤ËÆ°ºî¤·¤Þ¤¹¡£¤³¤Î¤³¤È¤òÍøÍÑ¤·¤Æ¡¢¿·¤·¤¤ IP ¥¢¥É¥ì¥¹¤Î¼èÆÀ¤È¶¯¸Ç¤Ê¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¡¦¥ë¡¼¥ë # ¥»¥Ã¥È¤ÎºÆÀßÄê¤ò¹Ô¤¤¤Þ¤¹¡£ # # ¤â¤·¡¢/etc/ppp/ip-up ¤¬¤¹¤Ç¤ËÂ¸ºß¤·¤Æ¤¤¤ë¤Ê¤é¡¢¤½¤ì¤òÊÔ½¸¤·¤Æ"/etc/rc.d/rc.firewall" # ¤È¤¤¤¦µ½Ò¤òºÇ¸å¤Î¤¢¤¿¤ê¤ËÄÉ²Ã¤¹¤ë¤è¤¦¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # # ¤â¤·¡¢/etc/ppp/ip-up ¥¹¥¯¥ê¥×¥È¤¬Â¸ºß¤·¤Ê¤«¤Ã¤¿¤Ê¤é¡¢/etc/rc.d/rc.firewall ¥¹¥¯¥ê¥×¥È # ¤ò¼Â¹Ô¤¹¤ë¤¿¤á¤Î¼¡¤Î¤è¤¦¤Ê¥ê¥ó¥¯¤òºîÀ®¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ # # ln -s /etc/rc.d/rc.firewall /etc/ppp/ip-up # # * Â³¤¤¤Æ¡¢°Ê²¼¤Î¥³¥á¥ó¥È¥¢¥¦¥È¤µ¤ì¤¿¥·¥§¥ë¥³¥Þ¥ó¥É¤òÉ¬Í×¤Ë±þ¤¸¤ÆÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤ * # # PPP µÚ¤Ó DHCP ¤òÍøÍÑ¤¹¤ë¾ì¹ç - # ------------------- # ¼¡¤Î¹Ô¤Î "#" ¤òºï½ü¤·¤Æ¡¢¤½¤Î¼¡¤Î¹Ô¤ÎÀèÆ¬¤Ë "#" ¤òÆþ¤ì¤Æ¤¯¤À¤µ¤¤¡£ #extip="`/sbin/ifconfig ppp0 | grep 'inet addr' | awk '{print $2}' | sed -e 's/.*://'`" # ÀÅÅª¤Ê IP ¥¢¥É¥ì¥¹¤Ç PPP ¤ò»È¤¦¾ì¹ç - # extip="your.static.PPP.address" # PPP ¤È DHCP ¤ò»È¤¦¾ì¹ç¤Ï¡¢É¬¤º¤³¤ÎÉôÊ¬¤ËÀµ¤·¤¤³°Éô¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ÎÌ¾Á°¤ò»ØÄê¤·¤Þ¤¹ extint="ppp0" # ÆâÉô¤Î IP ¥¢¥É¥ì¥¹¤Î³ä¤êÅö¤Æ¤ò»ØÄê¤·¤Þ¤¹ intint="eth0" intnet="192.168.0.0/24" # ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥¿¥¤¥à¥¢¥¦¥È # # 2 »þ´Ö= TCP ¥»¥Ã¥·¥ç¥ó # 10 ÉÃ¡¡= TCP/IP ¤Î "FIN" ¥Ñ¥±¥Ã¥È¤¬¼õ¿®¤µ¤ì¤¿¤¢¤È¤Î¥È¥é¥Õ¥£¥Ã¥¯ # 60 ÉÃ¡¡= UDP ¥È¥é¥Õ¥£¥Ã¥¯ (¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿´Ä¶¤Ç¤Î ICQ ÍøÍÑ¼Ô¤Ï ICQ ¼«ÂÎ¤ÎÀßÄê¤ÎÃæ¤Ç # 30ÉÃ¤Î¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¥¿¥¤¥à¥¢¥¦¥È¤ò»ØÄê¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó) # # ipchains -M -S 7200 10 60 ############################################################################# # ÅþÃå¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # µñÀä¡ÚÌõÃí: reject¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢µñÀä¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ë # ºÇ½ª¥ë¡¼¥ë¤òÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£ # ¡ÚÌõÃí: ¥ë¡¼¥ë¤ò REJECT ¤Ë¤¹¤ë¤È¡¢¥ë¡¼¥ë¤Ë¹çÃ×¤·¤¿¥Ñ¥±¥Ã¥È¤òÇË´þ¤·¤Æ¡¢ # "destination-unreachable" (ÌÜÅªÃÏ¤ËÅþÃ£¤·¤Ê¤¤) ¤È¤¤¤¦ ICMP ¥Ñ¥±¥Ã¥È¤ò # Áê¼êÂ¦ (Á÷¿®¸µ¥¢¥É¥ì¥¹¤Î¥Þ¥·¥ó) ¤ËÈ¯¿®¤·¤Þ¤¹¡£ # DENY ¤Ë¤¹¤ë¤È¡¢"destination-unreachable" ¥Ñ¥±¥Ã¥È¤â½Ð¤µ¤º¤Ë¡¢¼õ¿®¤·¤¿ # ¥Ñ¥±¥Ã¥È¤òÃ±¤ËÇË´þ¤·¤Þ¤¹¡£ # ipchains -F input ipchains -P input REJECT # ¥í¡¼¥«¥ë¥Þ¥·¥óÂ¦¤«¤é¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ËÆþ¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢¤É¤³¤Ë # ¸þ¤«¤¦¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # ipchains -A input -i $intint -s $intnet -d 0.0.0.0/0 -j ACCEPT # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤«¤éÆþ¤Ã¤ÆÍè¤ë IP ¥¹¥×¡¼¥Õ¥£¥ó¥°¡ÚÌõÃí: IP µ¶Áõ¡Û # ¥Ñ¥±¥Ã¥È¤äÌÂ»Ò¥Ñ¥±¥Ã¥È¤Ï¡¢ËÜÍè¤Ê¤é¥í¡¼¥«¥ë¥Þ¥·¥ó¤«¤é¤Ç¤¢¤ë¤Ù¤¤â¤Î¤Ê¤Î¤Ç¡¢ # µñÀä¤¹¤ë¡£ # ipchains -A input -i $extint -s $intnet -d 0.0.0.0/0 -l -j REJECT # ¥ê¥â¡¼¥È¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤ËÆþ¤Ã¤ÆÍè¤ë¡¢°¸Àè¥¢¥É¥ì¥¹¤¬ PPP ¥¢¥É¥ì¥¹¤Î # ¥Ñ¥±¥Ã¥È¤Ï¡¢¤É¤ÎÈ¯¿®¸µ¥¢¥É¥ì¥¹¤«¤é¤Î¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # ¡ÚÌõÃí: °Ê²¼¤Î¥³¥Þ¥ó¥É¤ÎÁ°¤Ë¡¢ # ipchains -A input -i $extint -S 0/0 -d $extip/32 -p tcp -y -j DENY -l # ¤¬¤¢¤ë¤«¡¢°¿¤Ï°Ê²¼¤Î¥³¥Þ¥ó¥É¤¬ # ipchains -A input -i $extint -S 0/0 -d $extip/32 -p tcp ! -y -j ACCEPT # ¤È¤Ê¤Ã¤Æ¤¤¤ëÊý¤¬¤è¤ê¹¥¤Þ¤·¤¤¤È»×¤¤¤Þ¤¹¡£¡Û # ipchains -A input -i $extint -s 0.0.0.0/0 -d $extip/32 -j ACCEPT # ¥ë¡¼¥×¥Ð¥Ã¥¯¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤òÍ¸ú¤È¤¹¤ë # ipchains -A input -i lo -s 0.0.0.0/0 -d 0.0.0.0/0 -j ACCEPT # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÅþÃå¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£¥Ý¥ê¥·¡¼¤Ë¤Ï # ¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤¬¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤òÂå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë # ¤Ê¤ë¡£ # ipchains -A input -s 0.0.0.0/0 -d 0.0.0.0/0 -l -j REJECT ############################################################################# # Á÷½Ð¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # µñÀä¡ÚÌõÃí: reject¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢µñÀä¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ëºÇ½ª¥ë¡¼¥ë¤ò # ÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£ # ipchains -F output ipchains -P output REJECT # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤«¤é½ÐÎÏ¤µ¤ì¤ë¡¢¥í¡¼¥«¥ë¥Í¥Ã¥È¤Ø¸þ¤«¤¦¥Ñ¥±¥Ã¥È¤Ï # ¤É¤³¤«¤é¤Î¤â¤Î¤âÍ¸ú¤È¤¹¤ë¡£ # ipchains -A output -i $intint -s 0.0.0.0/0 -d $intnet -j ACCEPT # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¥í¡¼¥«¥ë¥Í¥Ã¥È¤ØÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢ # µ¶Áõ¥ë¡¼¥Æ¥£¥ó¥°¤Ê¤Î¤Ç¡¢µñÀä¤¹¤ë¡£ # ipchains -A output -i $extint -s 0.0.0.0/0 -d $intnet -l -j REJECT # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤éÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤Ï¡¢ # ¤¢¤êÆÀ¤Ê¤¤¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ê¤Î¤Ç¡¢µñÀä¤¹¤ë¡£ # ipchains -A output -i $extint -s $intnet -d 0.0.0.0/0 -l -j REJECT # ¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤«¤é¤Î¤½¤ì°Ê³°¤ÎÁ÷½Ð¥Ñ¥±¥Ã¥È¤ÏÍ¸ú # ipchains -A output -i $extint -s $extip/32 -d 0.0.0.0/0 -j ACCEPT # ¥ë¡¼¥×¥Ð¥Ã¥¯¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤òÍ¸ú¤È¤¹¤ë¡£ # ipchains -A output -i lo -s 0.0.0.0/0 -d 0.0.0.0/0 -j ACCEPT # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÁ÷½Ð¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£ # ¥Ý¥ê¥·¡¼¤Ë¤Ï¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤Ï¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤ò # Âå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë¤Ê¤ë¡£ # ipchains -A output -s 0.0.0.0/0 -d 0.0.0.0/0 -l -j REJECT ############################################################################# # Å¾Á÷¥Ñ¥±¥Ã¥È¤Ë¤Ä¤¤¤Æ¡¢´ûÂ¸¤Î¥ë¡¼¥ë¤òÇË´þ¤·¡¢½é´ü¥Ý¥ê¥·¡¼¤ò # ÈÝÄê¡ÚÌõÃí: deny¡Û¤ËÀßÄê¡£¼ÂºÝ¤Ï¡¢ÈÝÄê¤·¤Æ¥í¥°¤ËµÏ¿¤¹¤ëºÇ½ª¥ë¡¼¥ë¤ò # ÍÑ°Õ¤¹¤ë¤Î¤Ç¡¢¤³¤Î¥Ý¥ê¥·¡¼¤ÏÆ°ºî¤Ë¤ÏÌµ´Ø·¸¤Ë¤Ê¤ë¡£ # ipchains -F forward ipchains -P forward DENY # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Ç¤Î¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤é¤½¤ÎÂ¾¤Î°¸Àè¤Ø¤Î¥Ñ¥±¥Ã¥È¤ò¥Þ¥¹¥«¥ì¡¼¥É¤¹¤ë # ipchains -A forward -i $extint -s $intnet -d 0.0.0.0/0 -j MASQ # # ºÇ½ª¥ë¡¼¥ë¡£¤½¤ÎÂ¾¤ÎÅ¾Á÷¥Ñ¥±¥Ã¥È¤ÏµñÀä¤µ¤ì¡¢¥í¥°¤ËµÏ¿¤µ¤ì¤ë¡£ # ¥Ý¥ê¥·¡¼¤Ë¤Ï¥í¥°µÏ¿¤Î¤¿¤á¤Î¥ª¥×¥·¥ç¥ó¤Ï¤Ê¤¤¤¿¤á¡¢¤³¤ì¤¬¤½¤ÎÌò³ä¤ò # Âå¤ï¤ê¤Ë²Ì¤¿¤¹¤³¤È¤Ë¤Ê¤ë¡£ # ipchains -A forward -s 0.0.0.0/0 -d 0.0.0.0/0 -l -j REJECT # ¥Õ¥¡¥¤¥ë¤Î½ª¤ï¤ê </verb>   IPCHAINS ¤Ç¤Ï "input", "output", "forward" ¤Î³Æ¥ë¡¼¥ë¤Ë¤ª¤¤¤Æ¡¢ ÆÃÄê¤Î¥µ¥¤¥È¤Ø¤Î¥È¥é¥Õ¥£¥Ã¥¯¤òÁË»ß¤¹¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ ¤³¤Î¥ë¡¼¥ë¤Ï¾å¤«¤é²¼¤Ø¤È½ç¤ËÅ¬ÍÑ¤µ¤ì¤Æ¤¤¤¡¢ "-A"¥ª¥×¥·¥ç¥ó¤Ï IPCHAINS ¤Ë ÂÐ¤·¤Æ¿·¤·¤¤¥ë¡¼¥ë¤ò´ûÂ¸¤Î¥ë¡¼¥ë·²¤ËÂÐ¤·¤Æ¡ÖÄÉ²Ã¡×¤¹¤ë¤â¤Î¤À¤È¤¤¤¦¤³¤È¤Ë Ãí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤ì¤ËÎ±°Õ¤¹¤ë¤È¡¢Á´ÂÎ¤Î¥ë¡¼¥ë¤ò»ØÄê¤¹¤ëÁ°¤ËÂ¾¤Î¸ÄÊÌ¤ÎÀ©¸Â¤¬É¬Í×¤È ¤Ê¤Ã¤Æ¤¤Þ¤¹¡£ ¤¿¤È¤¨¤Ð¡¢¼¡¤Î¤è¤¦¤Ê¤â¤Î¤Ç¤¹ -  "input" ¥ë¡¼¥ë¤ò»È¤¦ - ¡ÚÌõÃí: Á´¤Æ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤ËÅþÃå¤¹¤ë¥Ñ¥±¥Ã¥È¤¬ÄÌ²á¤¹¤ë¥ë¡¼¥ë¤Ç¤¹¡£ ¸ÄÊÌ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î»ØÄê¤Ï¡¢ -i ¥ª¥×¥·¥ç¥ó¤ËÂ³¤±¤Æ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾ ¤ò»ØÄê¤·¤Þ¤¹¡£¡Û  ¤³¤ì¤Ï¤ª¤½¤é¤¯¥È¥é¥Õ¥£¥Ã¥¯¤ò¥Ö¥í¥Ã¥¯¤¹¤ë°Ù¤Î¡¢ºÇ¤â¼ê¤Ã¼è¤êÁá¤¯¤Æ ¸úÎ¨¤ÎÎÉ¤¤ÊýË¡¤Ç¤¹¤¬¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥Þ¥·¥ó¤ËÂÐ¤·¤Æ¤Î¤ßÁË»ß¤Ç¤¡¢ ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥Þ¥·¥ó¼«¿È¤Ø¤Î¥È¥é¥Õ¥£¥Ã¥¯¤ÏÁË»ß¤Ç¤¤Þ¤»¤ó¡£ ¤â¤Á¤í¤ó¡¢¤³¤ÎÁÈ¤ß¹ç¤ï¤»¤òµö²Ä¤·¤¿¤¤¤È¤¤¤¦¤³¤È¤â¤¢¤ë¤Ç¤·¤ç¤¦¤¬¡£  ¤µ¤Æ¡¢ 204.50.10.13 ¤È¤¤¤¦¥¢¥É¥ì¥¹¤Ø¤Î¥È¥é¥Õ¥£¥Ã¥¯¤òÁË»ß¤¹¤ë¾ì¹ç -  /etc/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤ÎÃæ¤Î <![ %codes CDATA [ <verb>  ... ÆþÎÏ ¥ë¡¼¥ë¤Î¤Ï¤¸¤Þ¤ê ...  # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤Î 204.50.10.13 ¤È¤¤¤¦¥Þ¥·¥ó¤Ø¤Î¥Ñ¥±¥Ã¥È¤òµñÈÝ¤¹¤ë # ipchains -A input -s 192.168.0.0/24 -d 204.50.10.13/32 -l -j REJECT  #¡¡¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤Î¤É¤Î¥í¡¼¥«¥ë¥Þ¥·¥ó¤Î¤É¤³¤Ø¸þ¤«¤¦¥Ñ¥±¥Ã¥È¤âÍ¸ú¤È¤¹¤ë # ipchains -A input -s 192.168.0.0/24 -d 0.0.0.0/0 -l -j ACCEPT  ... ÆþÎÏ ¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb> ]]> <verb> ... ÆþÎÏ ¥ë¡¼¥ë¤Î¤Ï¤¸¤Þ¤ê ... # ¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤Î 204.50.10.13 ¤È¤¤¤¦¥Þ¥·¥ó¤Ø¤Î¥Ñ¥±¥Ã¥È¤òµñÈÝ¤¹¤ë # ipchains -A input -s 192.168.0.0/24 -d 204.50.10.13/32 -l -j REJECT #¡¡¥í¡¼¥«¥ë¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤Î¤É¤Î¥í¡¼¥«¥ë¥Þ¥·¥ó¤Î¤É¤³¤Ø¸þ¤«¤¦¥Ñ¥±¥Ã¥È¤âÍ¸ú¤È¤¹¤ë # ipchains -A input -s 192.168.0.0/24 -d 0.0.0.0/0 -l -j ACCEPT ... ÆþÎÏ ¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb>  "output" ¥ë¡¼¥ë¤ò»È¤¦ - ¡ÚÌõÃí: Á´¤Æ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤«¤éÁ÷½Ð¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤¬ÄÌ²á¤¹¤ë¥ë¡¼¥ë¤Ç¤¹¡£ ¸ÄÊÌ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î»ØÄê¤Ï¡¢ -i ¥ª¥×¥·¥ç¥ó¤ËÂ³¤±¤Æ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾ ¤ò»ØÄê¤·¤Þ¤¹¡£¡Û  ¤³¤ì¤Ï¥È¥é¥Õ¥£¥Ã¥¯¤ò¥Ö¥í¥Ã¥¯¤¹¤ë¤Ë¤ÏÃÙ¤¤ÊýË¡¤Ç¤¹¡£ ²¿¸Î¤Ê¤é¤Ð¡¢¥Ñ¥±¥Ã¥È¤ÏÇË´þ¤µ¤ì¤ë¤è¤ê°ÊÁ°¤Ë¥Þ¥¹¥«¥ì¡¼¥É¤òÄÌ¤é¤Ê¤±¤ì¤Ð ¤Ê¤é¤Ê¤¤¤«¤é¤Ç¤¹¡£ ¤·¤«¤·¤Ê¤¬¤é¤³¤Î¥ë¡¼¥ë¤Ç¤â¡¢¶Ø»ß¤·¤Æ¤¤¤ë¥µ¥¤¥È¤«¤é¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë ¥Þ¥·¥ó¤ËÂÐ¤¹¤ë¥¢¥¯¥»¥¹¤òÁË»ß¤¹¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ <![ %codes CDATA [ <verb>  ... ½ÐÎÏ¥ë¡¼¥ë¤Î»Ï¤Þ¤ê ...  # 204.50.10.13 ¤Ë¸þ¤±¤é¤ì¤¿¥Ñ¥±¥Ã¥È¤òµñÈÝ¤·¤Æ¥í¥°¤òºÎ¼è¤¹¤ë # ipchains -A output -s $ppp_ip/32 -d 204.50.10.13/32 -l -j REJECT  # ¤½¤ÎÂ¾¤Î¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤Ø¤ÎÁ÷½Ð¤ÏÍ¸ú¤Ë¤¹¤ë # ipchains -A output -s $ppp_ip/32 -d 0.0.0.0/0 -l -j ACCEPT  ... ½ÐÎÏ¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb> ]]> <verb> ... ½ÐÎÏ¥ë¡¼¥ë¤Î»Ï¤Þ¤ê ... # 204.50.10.13 ¤Ë¸þ¤±¤é¤ì¤¿¥Ñ¥±¥Ã¥È¤òµñÈÝ¤·¤Æ¥í¥°¤òºÎ¼è¤¹¤ë # ipchains -A output -s $ppp_ip/32 -d 204.50.10.13/32 -l -j REJECT # ¤½¤ÎÂ¾¤Î¥ê¥â¡¼¥È¥¤¥ó¥¿¥Õ¥§¡¼¥¹Â¦¤Ø¤ÎÁ÷½Ð¤ÏÍ¸ú¤Ë¤¹¤ë # ipchains -A output -s $ppp_ip/32 -d 0.0.0.0/0 -l -j ACCEPT ... ½ÐÎÏ¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb>  "forward" ¥ë¡¼¥ë¤ò»È¤¦ - ¡ÚÌõÃí: Á´¤Æ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¾å¤ÇÅ¾Á÷¤µ¤ì¤ë¥Ñ¥±¥Ã¥È¤¬ÄÌ²á¤¹¤ë¥ë¡¼¥ë¤Ç¤¹¡£ ¸ÄÊÌ¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î»ØÄê¤Ï¡¢ -i ¥ª¥×¥·¥ç¥ó¤ËÂ³¤±¤Æ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾ ¤ò»ØÄê¤·¤Þ¤¹¡£¡Û  ¤ª¤½¤é¤¯¡¢¥È¥é¥Õ¥£¥Ã¥¯¤ò¥Ö¥í¥Ã¥¯¤¹¤ë¤Ë¤Ï "input" ¥ë¡¼¥ë¤è¤ê ÃÙ¤¤ÊýË¡¤Ç¤¹¤¬¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥Þ¥·¥ó (Îã¤¨¤Ð¥í¡¼¥«¥ë¥¨¥ê¥¢ ¥Í¥Ã¥È¥ï¡¼¥¯¤Î¥Þ¥·¥ó) ¤ËÂÐ¤¹¤ë¥È¥é¥Õ¥£¥Ã¥¯¤À¤±¤ÏÁË»ß¤Ç¤¤Þ¤¹¡£ ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥Þ¥·¥ó¤Ï¶Ø»ß¤·¤¿¤¤¥µ¥¤¥È¤«¤éÅþÃ£²ÄÇ½¤Î¤Þ¤Þ¤Ç¤¹¡£ <![ %codes CDATA [ <verb>  ... Å¾Á÷¥ë¡¼¥ë¤Î³«»Ï ...  # PPP ¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¤Î 204.50.10.13 ¤Ë¸þ¤±¤¿¥Ñ¥±¥Ã¥È¤òµñÈÝ¤·¤Æ¥í¥°ºÎ¼è¤¹¤ë # ipchains -A forward -i ppp0 -s 192.168.0.0/24 -d 204.50.10.13/32 -l -j REJECT  # ¥í¡¼¥«¥ë¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Â¦¤Î¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤é¤Î¥Þ¥¹¥«¥ì¡¼¥É¤ò¹Ô¤¦ # ipchains -A forward -i ppp0 -s 192.168.0.0/24 -d 0.0.0.0/0 -j MASQ  ... Å¾Á÷¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb> ]]> <verb> ... Å¾Á÷¥ë¡¼¥ë¤Î³«»Ï ... # PPP ¥¤¥ó¥¿¥Õ¥§¡¼¥¹¾å¤Ç¤Î 204.50.10.13 ¤Ë¸þ¤±¤¿¥Ñ¥±¥Ã¥È¤òµñÈÝ¤·¤Æ¥í¥°ºÎ¼è¤¹¤ë # ipchains -A forward -i ppp0 -s 192.168.0.0/24 -d 204.50.10.13/32 -l -j REJECT # ¥í¡¼¥«¥ë¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Â¦¤Î¥í¡¼¥«¥ë¥Í¥Ã¥È¤«¤é¤Î¥Þ¥¹¥«¥ì¡¼¥É¤ò¹Ô¤¦ # ipchains -A forward -i ppp0 -s 192.168.0.0/24 -d 0.0.0.0/0 -j MASQ ... Å¾Á÷¥ë¡¼¥ë¤Î½ª¤ï¤ê ... </verb>  192.168.0.0/24 ¤Î¥Þ¥·¥ó¤«¤é 204.50.11.0 ¤Ë¸þ¤±¤Æ¤Î¥¢¥¯¥»¥¹¤òµö¤¹ÆÃÊÌ¤Ê¥ë¡¼¥ë¤ÏÉÔÍ×¤Ç¤¹¡£ ¤Ê¤¼¤Ê¤é¡¢¤½¤ì¤é¤ÏÁ´ÂÎÅª¤Ê¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Î¥ë¡¼¥ë¤Ë¤è¤Ã¤Æ¤Þ¤«¤Ê¤ï¤ì¤Æ¤¤¤ë¤«¤é¤Ç¤¹¡£  Ãí°Õ - IPFWADM ¤È°ã¤Ã¤Æ¡¢IPCHAINS ¤Ï¥¤¥ó¥¿¥Õ¥§¡¼¥¹Ì¾¤ò»ØÄê¤¹¤ëÊýË¡¤¬ °ì¤Ä¤·¤«¤¢¤ê¤Þ¤»¤ó¡£ IPCHAINS ¤Ï "-i eth0" ¤Î¤è¤¦¤Ë»ØÄê¤·¤Þ¤¹¤¬¡¢ IPFWADM ¤Ç¤Ï "-W"¤Ç ¥¤¥ó¥¿¥Õ¥§¡¼¥¹Ì¾¤ò»ØÄê¤·¡¢¤Þ¤¿ "-V" ¤Ç¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ÎIP¥¢¥É¥ì¥¹¤ò»ØÄê¤·¤Þ¤¹¡£ <label id="multiple-masqed-lans">   <sect1> Ê£¿ô¤ÎÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Ø¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É  Ê£¿ô¤ÎÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤ò»ý¤Ä¾ì¹ç¤Î¥Þ¥¹¥«¥ì¡¼¥É¤Ï¤«¤Ê¤êÃ±½ã¤Ç¤¹¡£ ¤Þ¤º³ÎÇ§¤¹¤ë¤³¤È¤Ï¡¢Á´¤Æ¤Î (ÆâÉô¤È³°ÉôÎ¾Êý¤Î) ¥Í¥Ã¥È¥ï¡¼¥¯¤¬Àµ¤·¤¯ Æ°ºî¤·¤Æ¤¤¤ë¤³¤È¤Ç¤¹¡£ ¤½¤ì¤«¤é¡¢Î¾Êý¤ÎÆâÉô¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Ë¤Ä¤¤¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ÈÂ¾¤Î ÆâÉô¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ËÂÐ¤·¤Æ¥Þ¥¹¥«¥ì¡¼¥É¤·¤Æ¥È¥é¥Õ¥£¥Ã¥¯¤òµö²Ä¤¹¤ë¤è¤¦¤Ë ÀßÄê¤·¤Þ¤¹¡£  Â³¤¤¤Æ¡¢ÆâÉô¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Ë¤Ä¤¤¤Æ¡¢¥Þ¥¹¥«¥ì¡¼¥É¤òµö²Ä¤·¤Þ¤¹¡£ ¤³¤ÎÎã¤Ç¤Ï¡¢Á´Éô¤Ç£³¤Ä¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ò»È¤¤¤Þ¤¹ - eth0 ¤Ï¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø¤ÎÀÜÂ³¤ò¹Ô¤¦³°Éô¥¤¥ó¥¿¥Õ¥§¡¼¥¹¡¢ eth1 ¤Ï 192.168.0.0 ¤Î¥Í¥Ã¥È¥ï¡¼¥¯¡¢¤½¤·¤Æ eth2 ¤Ï 192.168.1.0 ¤Î¥Í¥Ã¥È¥ï¡¼¥¯¤Ç¤¹¡£ rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤Ç¤Î¡¢´ûÂ¸¤Î¥Þ¥¹¥«¥ì¡¼¥É¤òµö²Ä¤·¤Æ¤¤¤ë¹Ô¤Î ¸å¤Ë¡¢¼¡¤Î¤è¤¦¤ÊÆâÍÆ¤òÄÉ²Ã¤·¤Þ¤¹ - <itemize>  <item>IPCHAINS ¤¬ÍøÍÑ²ÄÇ½¤Ê 2.2.x ·Ï¥«¡¼¥Í¥ë¤Î¾ì¹ç <![ %codes CDATA [ <verb>  # ÆâÉô¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Î´Ö¤Ç¤ÎÁê¸ß¤ÎÄÌ¿®¤òµö²Ä¤¹¤ë /sbin/ipchains -A forward -i eth1 -d 192.168.0.0/24 /sbin/ipchains -A forward -i eth2 -d 192.168.1.0/24  # ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ÄÌ¿®¤òµö²Ä¤¹¤ë /sbin/ipchains -A forward -j MASQ -i eth0 -s 192.168.0.0/24 -d 0.0.0.0/0 /sbin/ipchains -A forward -j MASQ -i eth0 -s 192.168.1.0/24 -d 0.0.0.0/0 </verb> ]]> <verb> # ÆâÉô¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Î´Ö¤Ç¤ÎÁê¸ß¤ÎÄÌ¿®¤òµö²Ä¤¹¤ë /sbin/ipchains -A forward -i eth1 -d 192.168.0.0/24 /sbin/ipchains -A forward -i eth2 -d 192.168.1.0/24 # ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ÄÌ¿®¤òµö²Ä¤¹¤ë /sbin/ipchains -A forward -j MASQ -i eth0 -s 192.168.0.0/24 -d 0.0.0.0/0 /sbin/ipchains -A forward -j MASQ -i eth0 -s 192.168.1.0/24 -d 0.0.0.0/0 </verb>  <item>IPFWADM ¤¬ÍøÍÑ²ÄÇ½¤Ê 2.0.x ·Ï¥«¡¼¥Í¥ë¤Î¾ì¹ç <![ %codes CDATA [ <verb>  # ÆâÉô¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Î´Ö¤Ç¤ÎÁê¸ß¤ÎÄÌ¿®¤òµö²Ä¤¹¤ë /sbin/ipfwadm -F -a accept -V 192.168.0.1 -D 192.168.1.0/24 /sbin/ipfwadm -F -a accept -V 192.168.1.1 -D 192.168.0.0/24  # ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ÄÌ¿®¤òµö²Ä¤¹¤ë /sbin/ipfwadm -F -a masq -W eth0 -S 192.168.0.0/24 -D 0.0.0.0/0 /sbin/ipfwadm -F -a masq -W eth0 -S 192.168.1.0/24 -D 0.0.0.0/0 </verb> ]]> <verb> # ÆâÉô¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Î´Ö¤Ç¤ÎÁê¸ß¤ÎÄÌ¿®¤òµö²Ä¤¹¤ë /sbin/ipfwadm -F -a accept -V 192.168.0.1 -D 192.168.1.0/24 /sbin/ipfwadm -F -a accept -V 192.168.1.1 -D 192.168.0.0/24 # ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÂÐ¤¹¤ë¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ÄÌ¿®¤òµö²Ä¤¹¤ë /sbin/ipfwadm -F -a masq -W eth0 -S 192.168.0.0/24 -D 0.0.0.0/0 /sbin/ipfwadm -F -a masq -W eth0 -S 192.168.1.0/24 -D 0.0.0.0/0 </verb> </itemize>  eth0 ¤¬Ê£¿ô²ó»ØÄê¤µ¤ì¤ë¤Î¤Ï¡¢¾å¤ÎÎã¤Ç¤Ï´Ö°ã¤¤¤Ç¤Ï¤Ê¤¤¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£Linux ¥«¡¼¥Í¥ë¤Ï ¤É¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤¬Á÷½Ð¥È¥é¥Õ¥£¥Ã¥¯¤ËÂÐ¤·¤Æ»È¤ï¤ì¤ë¤Î¤«¤òÃÎ¤ëÉ¬Í×¤¬¤¢¤ë¤«¤é¤Ç¤¹¡£¾å¤ÎÎã¤Ç eth0 ¤Ï ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÂÐ¤¹¤ëÀÜÂ³¤Î¤¿¤á¤Î¤â¤Î¤Ç¡¢¤½¤ì¤¾¤ì¤ÎÆâÉô¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤Ë¤Ä¤¤¤Æ»ØÄê¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ <label id="Diald">   <sect1> ¥ª¥ó¥Ç¥Þ¥ó¥É¡¦¥À¥¤¥¢¥ë¥¢¥Ã¥×ÀÜÂ³¤Ç¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É <enum>  <item>¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÂÐ¤¹¤ë¥À¥¤¥¢¥ë¥¢¥Ã¥×»þ¤Ë¼«Æ°Åª¤Ë¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀßÄê¤ò¹Ô¤¤¤¿¤¤¤È»×¤ï¤ì¤ë¤Ê¤é¡¢ Diald ¥Ç¥Þ¥ó¥É¡¦¥À¥¤¥¢¥ë¥¢¥Ã¥×¡¦¥µ¡¼¥Ó¥¹¥×¥í¥°¥é¥à¤«¡¢¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó¤Î PPPd ¥Ñ¥Ã¥±¡¼¥¸¤¬Èó¾ï¤ËÌòÎ©¤Ä¤Ç¤·¤ç¤¦¡£Diald ¤Ï¤è¤êåÌÌ©¤ÊÀßÄê¤¬¤Ç¤¤ë¤Î¤Ç¤ª´«¤á¤Ç¤¹¡£  <item>Diald ¤òÀßÄê¤¹¤ë¤Ë¤Ï <url url="http://home.pacific.net.sg/˜harish/diald.config.html" name="Setting Up Diald for Linux Page"> ¤ä <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - Section 23"> ¤ò»²¾È¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£  <item>Diald ¤È IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬Å¬ÀÚ¤ËÀßÄê¤µ¤ì¤ì¤Ð¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥Þ¥·¥ó¤«¤é¤Î Web »²¾È¤ä telnet, ftp ¤È¤¤¤Ã¤¿¥»¥Ã¥·¥ç¥ó¤¬³«»Ï¤µ¤ì¤¿»þÅÀ¤Ç¡¢Linux ¥Ü¥Ã¥¯¥¹¤ÏÆ°Åª¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø¤ÎÀÜÂ³¤ò ¼Â¹Ô¤¹¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£  <item>ºÇ½é¤ÎÀÜÂ³¤Ï¡¢¥¿¥¤¥à¥¢¥¦¥È¤¬È¯À¸¤¹¤ë¤Ç¤·¤ç¤¦¡£ ¤³¤ì¤Ï¥¢¥Ê¥í¥°¥â¥Ç¥à¤ò»È¤Ã¤Æ¤¤¤ë¾ì¹ç¡¢Èò¤±¤é¤ì¤Ê¤¤¤³¤È¤Ç¤¹¡£ ¥¯¥é¥¤¥¢¥ó¥È¤Î¥×¥í¥°¥é¥à (Web ¥Ö¥é¥¦¥¶¤Ê¤É) ¤Ë¤È¤Ã¤Æ¤ß¤ì¤Ð¡¢ PPPÀÜÂ³¤È¥â¥Ç¥à¤Î¥ê¥ó¥¯¤ò³ÎÎ©¤¹¤ë¤¿¤á¤Ë»þ´Ö¤¬¼è¤é¤ì¤ë¤³¤È¤Ë¤Ê¤ê¤Þ¤¹¡£ ¤·¤«¤·¡¢¤³¤ì¤Ï°ìÈÌÅª¤Ê¤³¤È¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó¡£ ¤â¤·¡¢¤³¤Î¤è¤¦¤Ê»ö¤¬µ¯¤³¤Ã¤¿¤é¡¢ (Web ¥Ú¡¼¥¸¤Î»²¾È¤Ê¤É¤Î) ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë ÂÐ¤¹¤ë¥È¥é¥Õ¥£¥Ã¥¯¥ê¥¯¥¨¥¹¥È¤¬ºÆÅÙÈ¯À¸¤·¤¿¤È¤¤ËºÆÅÙÆ±¤¸»ö¤ò·«¤êÊÖ¤·¤Æ ¤¦¤Þ¤¯Æ°ºî¤¹¤ë¤Ç¤·¤ç¤¦¡£ ¤Þ¤¿¡¢¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó¤Î echo "1" > /proc/sys/net/ipv4/ip_dynaddr ¤Î¼Â¹Ô¤Ï¡¢ÀÜÂ³»þ¤Î¤³¤Î½é´üÀßÄê¤ò»Ù±ç¤¹¤ë¤¿¤á¤Î¤â¤Î¤Ç¤¹¡£ </enum> <label id="Forwarders">   <sect1>IPPORTFW, IPMASQADM, IPAUTOFW, REDIR, UDPRED, µÚ¤Ó¤½¤ÎÂ¾¤Î¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë  IPPORTFW, IPAUTOFW, REDIR, UDPRED Åù¤Î¥×¥í¥°¥é¥à¤Ï Linux ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É ¤Ç»ÈÍÑ¤µ¤ì¤ëÈÆÍÑÅª¤Ê TCP ¤È UDP ¥Ý¡¼¥È¤ÎÅ¾Á÷¤Î¤¿¤á¤Ë»È¤ï¤ì¤ë¥Ä¡¼¥ë¤Ç¤¹¡£ ¤³¤ì¤é¤Î¥Ä¡¼¥ë¤Ï°ìÈÌÅª¤Ë FTP ¤ä Quake ÍÑ¤ËºîÀ®¤µ¤ì¤¿ IP ¥Þ¥¹¥«¥ì¡¼¥ÉÍÑ¤Î ¥â¥¸¥å¡¼¥ë¤ÎÂå¤ï¤ê¤Ë»È¤¦¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ ¤³¤ì¤é¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥À¤Ë¤è¤Ã¤Æ¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤«¤é IP ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤Î ¸µ¤ÇÆ°ºî¤¹¤ë¥×¥é¥¤¥Ù¡¼¥È¥¢¥É¥ì¥¹¤ËÇÛÃÖ¤µ¤ì¤¿¥Þ¥·¥ó¤Ë¸þ¤«¤Ã¤ÆÁ÷¤é¤ì¤ë ¥Ç¡¼¥¿ÀÜÂ³¤ò¥ê¥À¥¤¥ì¥¯¥È¤¹¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ Å¾Á÷µ¡Ç½¤Ï¡¢ TELNET, WWW, SMTP, FTP (¸å½Ò¤¹¤ëÆÃÊÌ¤Ê¥Ñ¥Ã¥Á¤¬É¬Í×¤Ç¤¹), ICQ ¤ä¡¢¤½¤ÎÂ¾Â¿¤¯¤Î¤â¤Î¤ò´Þ¤ó¤Ç¤¤¤Þ¤¹¡£  Ãí°Õ - IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÈ¼¤ï¤Ê¤¤Ã±½ã¤Ê¥Ý¡¼¥ÈÅ¾Á÷¤ò¤ªµá¤á¤Ç¤â¡¢Linux ¤Î IP Å¾Á÷¥Ä¡¼¥ë¤ò»È¤¦¤Ë¤Ï¡¢¥«¡¼¥Í¥ë¤È IPFWADM ¤« IPCHAINS ¤¤¤º¤ì¤«¤Ë¤è¤ë ¥ë¡¼¥ë¥»¥Ã¥È¤¬<bf>É¬Í×</bf>¤Ç¤¹¡£  ¤Ç¤Ï¤Ê¤¼°Û¤Ê¤ëÁªÂò¤¬´ö¤Ä¤â¤¢¤ë¤Î¤Ç¤·¤ç¤¦¤«? IPAUTOFW, REDIR ¤½¤ì¤Ë UDPRED (¤³¤ì¤é¤Ø¤Î URL ¤Ï <ref id="2.0.x-Requirements" name="2.0.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤ËµºÜ¤·¤Æ¤¢¤ê¤Þ¤¹) ¤Ê¤É¤Ï¡¢IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò»È¤¦¥æ¡¼¥¶¤Ë¤È¤Ã¤Æ¡¢ ¤³¤ì¤é¤Îµ¡Ç½¤òÄó¶¡¤¹¤ëºÇ½é¤Î¥Ä¡¼¥ëÎà¤Ç¤·¤¿¡£ ¤½¤Î¸å¡¢ Linux ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤¬À®½Ï¤¹¤ë¤Ë¤Ä¤ì¤Æ¡¢¤³¤ì¤é¤Î¥Ä¡¼¥ë¤Ï IPPORTFW ¤È¤¤¤¦¡¢¤â¤Ã¤È¹âÅÙ¤Ê²ò·èÊýË¡¤Ë¤È¤Ã¤ÆÂå¤ï¤é¤ì¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤·¤¿¡£ ¤è¤ê¿·¤·¤¤¥Ä¡¼¥ë¤ÎÅÐ¾ì¤Ë¤è¤Ã¤Æ¡¢IPAUTOFW ¤ä REDIR ¤È¤¤¤¦¸Å¤¤¥Ä¡¼¥ë¤Î ¥æ¡¼¥¶¤ÏÂç¤¤¤ËÍîÃÀ¤µ¤»¤é¤ì¤ë¤³¤È¤Ë¤Ê¤ê¤Þ¤·¤¿¡£ ¤È¤¤¤¦¤Î¤â¡¢¤³¤ì¤é¤Î¥Ä¡¼¥ë¤Ï Linux ¥«¡¼¥Í¥ë¤ËÂÐ¤·¤Æ¡¢¼«¿È¤ÎÂ¸ºß¤òÅ¬ÀÚ¤Ë ÄÌÃÎ¤¹¤ë¤³¤È¤Ê¤¯Æ°¤¤¤Æ¤¤¤ë¤Î¤Ç¡¢Éé²Ù¤Î¤«¤«¤ë¤è¤¦¤Ê¾õ¶·¤Ç¤Ï Linux ¥µ¡¼¥Ð¤ò ¥¯¥é¥Ã¥·¥å¤µ¤»¤Æ¤·¤Þ¤¦¤è¤¦¤Ê¤³¤È¤¹¤é¤¢¤Ã¤¿¤«¤é¤Ç¤¹¡£ MFW ¤È¤¤¤¦ºÇ¿·¤ÎÊýË¡¤â¤¢¤ê¤Þ¤¹¡£ MFW ¤ÎºÇ¤âÂç¤¤ÊÍøÅÀ¤Ï¡¢IPCHAINS ¥Ä¡¼¥ë¤È¤Î¹â¤¤Åý¹çÀ¤Ç¤¹¡£ ¤³¤ÎÊýË¡¤Ç¤Ï¡¢IPCHAINS ¥ë¡¼¥ë¥»¥Ã¥È¤ÏÆÃÄê¤Î¥Ñ¥±¥Ã¥È¤ËÂÐ¤·¤Æ°õ¤òÉÕ¤±¡¢ Å¬ÀÚ¤ÊÅ¾Á÷¤ò¹Ô¤¦¤¿¤á¤Î¥ë¡¼¥ë¤òÄó¶¡¤¹¤ë¤¿¤á¤Ë»È¤ï¤ì¤Þ¤¹¡£ º£¤Î¤È¤³¤í¡¢¤³¤ì¤Ë¤Ä¤¤¤Æ¤Ï¤³¤Î HOWTO ¤Ç¤Ï½Ò¤Ù¤Æ¤¤¤Þ¤»¤ó¡£  <bf>Ãí°Õ #2 - 2.2.x ·Ï¥«¡¼¥Í¥ë¤Ë¤ª¤±¤ë PORTFW ¤Ç¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î ¥Þ¥·¥ó¤«¤é¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Ë¤¢¤ë¥Í¥Ã¥È¥ï¡¼¥¯³°Éô¤Î¥Þ¥·¥ó¤ËÂÐ¤¹¤ë ¥¢¥¯¥»¥¹¤ËÆ±¤¸¥Ý¡¼¥ÈÅ¾Á÷¤µ¤ì¤¿ IP ¥¢¥É¥ì¥¹¤ò»È¤¦¤³¤È¤¬¤Ç¤¤Þ¤¹¤¬¡¢ ¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤ÎÂ¾¤Î¥Þ¥·¥ó¤ËÂÐ¤·¤Æ¤Ï»È¤¨¤Þ¤»¤ó¡£ ¤â¤·¡¢¤³¤ì¤¬¤¢¤Ê¤¿¤Î¾ì¹ç¤Ë³ºÅö¤¹¤ë¤Ê¤é¡¢¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î¥µ¡¼¥Ð¤Ø¤Î ¥ê¥À¥¤¥ì¥¯¥È¤ò¹Ô¤¦¤¿¤á¤Ë REDIR ¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë¤ò»î¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ ¸å¤Ë½Ò¤Ù¤ë <ref id="NetFilter"> ¥Ä¡¼¥ë¥»¥Ã¥È¤ò»È¤¦¤Î¤âÎÉ¤¤¹Í¤¨¤À¤È»×¤¤¤Þ¤¹¡£ ¤Ê¤¼ÆâÉô/³°Éô¤ÎÅ¾Á÷¤¬Æ°¤«¤Ê¤¤¤Î¤«¤Îµ»½ÑÅªÀâÌÀ¤Ë¤Ä¤¤¤Æ¤Ï¡¢2.2.x ·Ï¥«¡¼¥Í¥ë¤Î PORTFW ¤Ë´Ø¤¹¤ë¾Ï¤ÎºÇ¸å¤Ë¤¢¤ë Juan ¤Ë¤è¤ëÃí¼á¤ò¤´Í÷¤¯¤À¤µ¤¤¡£</bf>    Ãí°Õ #3 - ÆâÉô¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ FTP ¥µ¡¼¥Ð¤ËÂÐ¤¹¤ë¥È¥é¥Õ¥£¥Ã¥¯¤Î Å¾Á÷¤Ï <bf>PORTFW FTP</bf> ¤È¤·¤ÆÃÎ¤é¤ì¤Æ¤¤¤Þ¤¹¤¬¡¢¸½ºß 2.0.x ·Ï¤È 2.2.x ·Ï¤Î¤¤¤º¤ì¤Î¥«¡¼¥Í¥ë¤Ç¤âÄó¶¡¤µ¤ì¤ë¤è¤¦¤Ë¤Ê¤ê¤Þ¤·¤¿¡£ ¸½¾õ¤Ç¤Ï¼çÎ®¤Î Linux ¥«¡¼¥Í¥ë¤Ç¤Ï¥µ¥Ý¡¼¥È¤µ¤ì¤Æ¤¤¤Þ¤»¤ó¤¬¡¢¥«¡¼¥Í¥ë ¤Ë¥Ñ¥Ã¥Á¤òÅ¬ÍÑ¤¹¤ë¤«¡¢³°Éô FTP ¥×¥í¥¥·¥µ¡¼¥Ð¤Ë¤è¤Ã¤Æ²ÄÇ½¤È¤Ê¤ê¤Þ¤¹¡£ ¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¥³¡¼¥É¤Ï¤Þ¤À¼Â¸³Ãæ¤Ç¡¢PASSIVE ÀÜÂ³¤è¤ê¤Ï ACTIVE FTP ¥»¥Ã¥·¥ç¥ó¤Ë¤è¤ëÀÜÂ³¤Î¤Û¤¦¤¬ÎÉ¹¥¤Ê·ë²Ì¤È¤Ê¤ë¾ì¹ç¤â¤¢¤ë¤è¤¦¤Ç¤¹¡£ ¶½Ì£¿¼¤¤¤³¤È¤Ë¡¢µÕ¤Î¿¶¤ëÉñ¤¤¤ÇÆ°¤¯¥±¡¼¥¹¤â¤¢¤ë¤è¤¦¤Ç¤¹¡£ ¤¢¤Ê¤¿¤Î¾ì¹ç¤Î·ë²Ì¤¬¤É¤¦¤À¤Ã¤¿¤«»ä¤¿¤Á¤Ë¶µ¤¨¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤Î·ï¤Ë¤Ä¤¤¤Æ¡¢°Ê¹ß¤Î2.0.x ·Ï µÚ¤Ó 2.2.x ·Ï¤½¤ì¤¾¤ì¤Î¾Ï¤ËÊÌ¤Ê ¥Ñ¥Ã¥Á¤òÍÑ¤¤¤¿²ò·èÊýË¡¤¬¾ÜºÙ¤Ë½Ò¤Ù¤é¤ì¤Æ¤¤¤Þ¤¹¡£   2.0.x ·Ï¥«¡¼¥Í¥ë¤Î IPPORTFW ¤Ç¤â¡¢ 2.2.x ·Ï¥«¡¼¥Í¥ë¤Î IPPORTFW ¥µ¥Ý¡¼¥È¤Î ¤¢¤ë IPMASQADM ¤ò»È¤¦¾ì¹ç¤Ç¤â¡¢¥Í¥Ã¥È¥ï¡¼¥¯¥»¥¥å¥ê¥Æ¥£¤Ë´Ø¤¹¤ë¹ÍÎ¸¤Ï ¤½¤ì¤é¤Î¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥ÀÁÈ¤ß¹þ¤ß¤ÎÁ°¤ËÉ¬Í×¤Ç¤¹¡£ ¤Ê¤¼¤Ê¤é¡¢¤³¤ì¤é¤Î¥Ä¡¼¥ë¤Ï´ðËÜÅª¤Ë¤ÏÅ¾Á÷¤µ¤ì¤¿ TCP/UDP ¥Ý¡¼¥È¤Ë¤Ä¤¤¤Æ¡¢ ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¾å¤Ë¥»¥¥å¥ê¥Æ¥£¾å¤Î·ê¤òºî¤ë¤¿¤á¤Î¤â¤Î¤À¤«¤é¤Ç¤¹¡£ ¤³¤ì¤Ï¡¢¤¢¤Ê¤¿¤Î Linux ¥Þ¥·¥ó¡ÚÌõÃí: ¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¼«¿È¡Û¤ËÂÐ¤·¤Æ Èï³²¤òµÚ¤Ü¤¹¤³¤È¤Ï¤¢¤ê¤Þ¤»¤ó¤¬¡¢¥È¥é¥Õ¥£¥Ã¥¯¤¬Å¾Á÷¤µ¤ì¤ëÀè¤ÎÆâÉô¥Þ¥·¥ó¤Ë ÂÐ¤·¤Æ±Æ¶Á¤ò¤ª¤è¤Ü¤·¤Þ¤¹¡£ ¤È¤Ï¤¤¤¨¡¢¤½¤ó¤Ê¤Ë¿´ÇÛ¤·¤Ê¤¤¤Ç¤¯¤À¤µ¤¤¡£ ¤³¤ì¤Ï Steven Clarke (IPPORTFW ¤Îºî¼Ô) ¤¬Ãí°Õ¤òÂ¥¤¹¤¿¤á¤Ë½Ò¤Ù¤Ê¤±¤ì¤Ð ¤Ê¤é¤Ê¤«¤Ã¤¿¡¢°Ê²¼¤Î¤è¤¦¤Ê¾ì¹ç¤Ç¤¹ - <![ %codes CDATA [ <tscreen> <verb>  ¡Ö¥Ý¡¼¥ÈÅ¾Á÷¤Ï¡¢IPFWADM ¤ä IPCHAINS ¥ë¡¼¥ë¤ÎÆâÉô¤«¤é¤Î¤ß¸Æ¤Ó½Ð¤µ¤ì¤ë¤è¤¦¤Ëºî¤é¤ì¤Æ¤ª¤ê¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¡¢IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Î°ì¼ï¤Î³ÈÄ¥¤È¸«¤Ê¤µ¤ì¤ë¡£ ¤·¤«¤·¤Ê¤¬¤é¡¢ IPPORTFW ¤Ï IPFWADM ¥ë¡¼¥ë¥»¥Ã¥È¤ÎÅþÃåµÚ¤ÓÁ÷½Ð¥Þ¥¹¥«¥ì¡¼¥É¥ë¡¼¥ë¤ËÅ¬¹ç¤¹¤ë ¥Ñ¥±¥Ã¥È¤À¤±¤Ë¤Ä¤¤¤Æ¡¢¼è¤ê°·¤¦¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤ë¡£¡× </verb> </tscreen> ]]> <tscreen> <verb> ¡Ö¥Ý¡¼¥ÈÅ¾Á÷¤Ï¡¢IPFWADM ¤ä IPCHAINS ¥ë¡¼¥ë¤ÎÆâÉô¤«¤é¤Î¤ß¸Æ¤Ó½Ð¤µ¤ì¤ë¤è¤¦¤Ëºî¤é¤ì¤Æ¤ª¤ê¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¡¢IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Î°ì¼ï¤Î³ÈÄ¥¤È¸«¤Ê¤µ¤ì¤ë¡£ ¤·¤«¤·¤Ê¤¬¤é¡¢ IPPORTFW ¤Ï IPFWADM ¥ë¡¼¥ë¥»¥Ã¥È¤ÎÅþÃåµÚ¤ÓÁ÷½Ð¥Þ¥¹¥«¥ì¡¼¥É¥ë¡¼¥ë¤ËÅ¬¹ç¤¹¤ë ¥Ñ¥±¥Ã¥È¤À¤±¤Ë¤Ä¤¤¤Æ¡¢¼è¤ê°·¤¦¤è¤¦¤Ë¤Ê¤Ã¤Æ¤¤¤ë¡£¡× </verb> </tscreen>  ¤³¤³¤Ç½Ò¤Ù¤Æ¤¤¤ë¤Î¤Ï¡¢¶¯¸Ç¤Ê¥Õ¥¡¥¤¥¢¥¦¥ª¡¼¥ë¥ë¡¼¥ë¥»¥Ã¥È¤ÎÉ¬Í×À¤Ê¤Î¤Ç¤¹¡£ ¶¯¸Ç¤Ê¥ë¡¼¥ë¥»¥Ã¥È¤Ë¤Ä¤¤¤Æ¤Ï <ref id="Strong-IPFWADM-Rulesets" name="¶¯¤¤ IPFWADM ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> ¤È <ref id="Strong-IPCHAINS-Rulesets" name="¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> ¤ò»²¾È¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£  ¤Ç¤¹¤«¤é¡¢ IPPORTFW ¤Ë¤è¤ëÅ¾Á÷¥µ¥Ý¡¼¥È¤ò 2.2.x ¤Þ¤¿¤Ï 2.0.x ·Ï¤Î ¥«¡¼¥Í¥ë¤Ë¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ë¤¿¤á¤Ë¤Ï¡¢IPPORTFW ¤òÍøÍÑ¤Ç¤¤ë¤è¤¦¤Ë Linux ¥«¡¼¥Í¥ë¤òºÆ¥³¥ó¥Ñ¥¤¥ë¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ <itemize>  <item>2.2.x ·Ï¥«¡¼¥Í¥ë¤ò¤ª»È¤¤¤ÎÊý¤Ï¡¢¤¹¤Ç¤Ë IPPORTFW ¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó¤ò¡¢ IPMASQADM¤òÄÌ¤¸¤Æ»È¤¦¤¿¤á¤Î¼ê½ç¤Ç»ØÄê¤·¤Æ¤¤¤ë¤Ï¤º¤Ç¤¹¡£  <item>2.0.x ·Ï¥«¡¼¥Í¥ë¤ò¤ª»È¤¤¤ÎÊý¤Ï¡¢Ã±½ã¤Ê¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó¤Î¥Ñ¥Ã¥Á¤òÅ¬ÍÑ¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ </itemize>  <sect2>2.2.x ·Ï¥«¡¼¥Í¥ë¤Ç¤Î¡¢IPPORTFW ¥µ¥Ý¡¼¥È¤Ä¤ IPMASQADM  ¤Þ¤ººÇ½é¤Ë¡¢ºÇ¿·¤Î 2.2.x ¥«¡¼¥Í¥ë¡ÚÌõÃí: ËÝÌõ»þÅÀ¤Ç¤Ï 2.2.19 ¤Ç¤·¤¿¡Û¤ò /usr/src/linux¥Ç¥£¥ì¥¯¥È¥ê¤ËÅ¸³«¤·¤Þ¤¹¡£ ¤Þ¤À¤³¤Î¼ê½ç¤ò¤ä¤Ã¤Æ¤¤¤Ê¤¤Êý¤Ï¡¢ <ref id="Kernel-Compile" name="¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë"> ¤Î¾Ï¤Î¾ÜºÙ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ Â³¤¤¤Æ¡¢"ipmasqadm.c" ¥×¥í¥°¥é¥à¤ò <ref id="2.2.x-Requirements" name="2.2.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Ë½Ò¤Ù¤Æ¤¤¤ëÊýË¡¤Ç¥À¥¦¥ó¥í¡¼¥É¤·¤ÆÆþ¼ê¤·¡¢ /usr/src/ ¥Ç¥£¥ì¥¯¥È¥ê¤ËÃÖ¤¤Þ¤¹¡£  °ú¤Â³¤¤¤Æ¡¢ 2.2.x ·Ï¥«¡¼¥Í¥ë¤ò <ref id="Kernel-Compile" name="¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë"> ¤Î¾Ï¤Ë¼¨¤µ¤ì¤Æ¤¤¤ë¤è¤¦¤Ë¥³¥ó¥Ñ¥¤¥ë¤·¤Þ¤¹¡£ ¥«¡¼¥Í¥ë¤Î¥ª¥×¥·¥ç¥ó¤òÀßÄê¤¹¤ëºÝ¤Ë¡¢IPPORTFW ¥ª¥×¥·¥ç¥ó¤Ë¤Ï YES ¤ò »ØÄê¤·¤Æ¤¯¤À¤µ¤¤¡£ ¥«¡¼¥Í¥ë¤¬¥³¥ó¥Ñ¥¤¥ë¤Ç¤¡¢ºÆµ¯Æ°¤ò³ÎÇ§¤·¤¿¤é¡¢ºÆ¤Ó¤³¤Î¾Ï¤Ë Ìá¤Ã¤ÆÀâÌÀ¤ÎÂ³¤¤òÆÉ¤ó¤Ç¤¯¤À¤µ¤¤¡£  ¤Ç¤Ï¡¢ IPMASQADM ¥Ä¡¼¥ë¤Î¥³¥ó¥Ñ¥¤¥ë¤È¥¤¥ó¥¹¥È¡¼¥ë¤ò¹Ô¤¤¤Þ¤¹ - <tscreen> <verb> cd /usr/src tar xzvf ipmasqadm-x.tgz cd ipmasqadm-x make make install </verb> </tscreen>  ¤µ¤Æ¡¢Îã¤È¤·¤Æ¤³¤³¤Ç¡¢¤¢¤Ê¤¿¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î TCP/IP ¥¢¥É¥ì¥¹¤ËÂÐ¤¹¤ë Á´¤Æ¤Î WWW ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥È¥é¥Õ¥£¥Ã¥¯ (¥Ý¡¼¥È80) ¤ò¡¢ÆâÉô¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ ¥Þ¥·¥ó¤Î IP ¥¢¥É¥ì¥¹¡¢ 192.168.0.10 ¤Ë¸þ¤±¤ë¾ì¹ç¤ò¼è¤ê¾å¤²¤Þ¤¹¡£  PORTFW FTP - ¤³¤ì¤Ë¤Ä¤¤¤Æ¤ÏÀè¤ËÀâÌÀ¤·¤¿¤è¤¦¤Ë¡¢ FTP ¥µ¡¼¥Ð¤ËÂÐ¤¹¤ë ¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥Þ¥·¥ó¤Ø¤ÎÅ¾Á÷¤Ï 2¤Ä¤ÎÊýË¡¤¬¤¢¤ê¤Þ¤¹¡£ ºÇ½é¤ÎÊýË¡¤Ï¤Þ¤À¥Ù¡¼¥¿¥ì¥Ù¥ë¤Ç¤¹¤¬¡¢ÆâÉô¤Ë¤¢¤ë¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ FTP ¥µ¡¼¥Ð¤Ø¡¢ FTP ÀÜÂ³¤ò¥Ý¡¼¥ÈÅ¾Á÷¤¹¤ë 2.2.x ¥«¡¼¥Í¥ëÍÑ¤Î IP_MASQ_FTP ¥â¥¸¥å¡¼¥ë¤ò»È¤¦¤³¤È¤Ç¤¹¡£ ¤â¤¦°ì¤Ä¤ÎÊýË¡¤Ï¡¢ FTP ¥×¥í¥¥·¥×¥í¥°¥é¥à ( <ref id="2.2.x-Requirements" name="2.2.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤Ë URL ¤òµºÜ¤·¤Æ¤¢¤ê¤Þ¤¹) ¤Ç¤¹¡£ FTP ¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¤Ë¤Ä¤¤¤Æ¤Ï¡¢ IP_MASQ_FTP ¥â¥¸¥å¡¼¥ë¤ò¥¢¥ó¥í¡¼¥É¤·¤¿¤ê ºÆ¥í¡¼¥É¤¹¤ë¤³¤È¤Ê¤·¤Ë¡¢ PORTFW ¤Î FTP ¥Ý¡¼¥È¤òÆ°Åª¤ËÄÉ²Ã¤¹¤ë¤³¤È¤¬ ¤Ç¤¤Þ¤¹¤¬¡¢¤³¤ì¤Ï¤½¤Î»þÅÀ¤ÇÂ¸ºß¤·¤Æ¤¤¤ëÂ¾¤Î FTP Å¾Á÷¤òÌµ¸ú¤Ë¤·¤Æ¤·¤Þ¤¤¤Þ¤¹¡£ ¤³¤Î¿·¤·¤¤¥³¡¼¥É¤Î¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î web ¥µ¥¤¥È <url url="http://ipmasq.cjb.net/"> ¤ò¤´Í÷¤¯¤À¤µ¤¤¡£ ¤Þ¤¿¡¢ 2.0.x ·Ï¥«¡¼¥Í¥ë¤Î¾Ï¤Ë¡¢¥Ý¡¼¥ÈÅ¾Á÷¤µ¤ì¤¿ FTP ÀÜÂ³¤Ë´Ø¤¹¤ëÎã¤È ¼ã´³¤Î¾ðÊó¤¬¤¢¤ê¤Þ¤¹¡£  <bf>Ãí°Õ - </bf>¥Ý¡¼¥ÈÅ¾Á÷¤ò¥Ý¡¼¥È 80 ¤ÇÍ¸ú¤Ë¤·¤¿¤Ê¤é¡¢¤½¤ì°Ê¹ß¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤Ç¤½¤Î¥Ý¡¼¥È¤ò»È¤¦¤³¤È¤Ï¤Ç¤¤Ê¤¯¤Ê¤ê¤Þ¤¹¡£ ¤Ä¤Þ¤ê¡¢¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¾å¤Ç¤¹¤Ç¤Ë Web ¥µ¡¼¥Ð¤òÆ°¤«¤·¤Æ¤¤¤¿¾ì¹ç¤Ï¡¢ ¥Ý¡¼¥ÈÅ¾Á÷¤Ë¤è¤Ã¤Æ¡¢¤¹¤Ù¤Æ¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤«¤é¤Î Web ¥¢¥¯¥»¥¹¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤Î¥Ú¡¼¥¸¤Ç¤Ï¤Ê¤¯¡¢ÆâÉô¤Î Web ¥µ¡¼¥Ð¤ËÂÐ¤·¤Æ ¿¶¤ê¸þ¤±¤é¤ì¤Æ¤·¤Þ¤¦¤Î¤Ç¤¹¡£  ¤¤¤º¤ì¤Ë¤»¤è¡¢¥Ý¡¼¥ÈÅ¾Á÷¤òÍ¸ú¤Ë¤¹¤ë¤Ë¤Ï¡¢ /etc/rc.d/rc.firewall ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ò½ñ¤´¹¤¨¤Ê¤±¤ì¤Ð ¤¤¤±¤Þ¤»¤ó¡£°Ê²¼¤Î¤è¤¦¤Ê¹Ô¤òÄÉ²Ã¤·¤Þ¤¹¤¬¡¢"$extip" ¤ÎÉôÊ¬¤Ï¤¢¤Ê¤¿¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë¸ø³«¤¹¤ë IP ¥¢¥É¥ì¥¹ ¤ò»ØÄê¤¹¤ë¤è¤¦¤Ë½ñ¤´¹¤¨¤Æ¤¯¤À¤µ¤¤¡£  <bf>Ãí°Õ - </bf>¤â¤·¡¢PPP, ADSL, ¥±¡¼¥Ö¥ë¥â¥Ç¥à¤Ê¤É¤Ë¤è¤ê ISP ¤«¤é Æ°Åª¤Ê TCP/IP ¥¢¥É¥ì¥¹¤ò³ä¤êÅö¤Æ¤é¤ì¤Æ¤¤¤ë¾ì¹ç¤Ï¡¢ /etc/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤ò¤â¤Ã¤È¥¤¥ó¥Æ¥ê¥¸¥§¥ó¥È¤ËºîÀ®¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¤½¤Î¤¿¤á¤Î¾ðÊó¤Ï¡¢Á°½Ð¤Î <ref id="Strong-IPCHAINS-Rulesets" name="¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> ¤Î¾Ï¤« <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - Section 10"> ¤Ë¶¯¸Ç¤Ê¥ë¡¼¥ë¥»¥Ã¥È¤òÆ°Åª¤Ê IP ¥¢¥É¥ì¥¹´Ä¶¤Ç ºîÀ®¤¹¤ë¾ÜºÙ¤¬½Ò¤Ù¤é¤ì¤Æ¤¤¤Þ¤¹¡£ ¤³¤³¤Ç¤Ï¥Ò¥ó¥È¤À¤± - PPP¤Î ¾ì¹ç¤Ï¡¡/etc/PPP/ip-up ¤Ç¤¹¡£ <![ %codes CDATA [ <tscreen> <verb> /etc/rc.d/rc.firewall --  #echo "IPPORTFW ¤Ë¤è¤ë¥ê¥À¥¤¥ì¥¯¥·¥ç¥ó¤ò³°Éô LAN ¤ËÅ¬ÍÑ.." # /usr/sbin/ipmasqadm portfw -f /usr/sbin/ipmasqadm portfw -a -P tcp -L $extip 80 -R 192.168.0.10 80 -- </verb> </tscreen> ]]> <tscreen> <verb> /etc/rc.d/rc.firewall -- #echo "IPPORTFW ¤Ë¤è¤ë¥ê¥À¥¤¥ì¥¯¥·¥ç¥ó¤ò³°Éô LAN ¤ËÅ¬ÍÑ.." # /usr/sbin/ipmasqadm portfw -f /usr/sbin/ipmasqadm portfw -a -P tcp -L $extip 80 -R 192.168.0.10 80 -- </verb> </tscreen>  ¤³¤ì¤À¤±¤Ç¤¹¡ª /etc/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤òºÆÅÙ¼Â¹Ô¤·¤Æ¥Æ¥¹¥È¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£  ¤â¤·¡¢"ipchains: setsockopt failed: Protocol not available" ¤È¤¤¤¦ ¥¨¥é¡¼¥á¥Ã¥»¡¼¥¸¤ò¼õ¤±¼è¤Ã¤Æ¤·¤Þ¤Ã¤¿¤é¡¢¤¢¤Ê¤¿¤Ï¤Þ¤À¿·¤·¤¤¥«¡¼¥Í¥ë¤ò Æ°ºî¤Ç¤¤Æ¤¤¤Þ¤»¤ó¡£ ¿·¤·¤¤¥«¡¼¥Í¥ë¤òÀµ¤·¤¯ÁÈ¤ß¹þ¤ó¤À¤³¤È¤ò³ÎÇ§¤·¡¢ LILO ¤òºÆÅÙ¼Â¹Ô¤·¡¢ ºÆµ¯Æ°¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ ¤â¤·¡¢¿·¤·¤¤¥«¡¼¥Í¥ë¤¬Æ°¤¤¤Æ¤¤¤ë¤Î¤¬³Î¼Â¤Ê¤é¤Ð¡¢ "ls /proc/net/ip_masq" ¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤·¤Æ¡¢ "portfw" ¥Õ¥¡¥¤¥ë¤¬Â¸ºß¤·¤Æ¤¤¤ë¤«³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤ì¤¬Ìµ¤¤¤Ê¤é¡¢¥«¡¼¥Í¥ë¤Î¹½ÃÛ¤Ç¤Ê¤Ë¤«¥¨¥é¡¼¤¬½Ð¤Æ¤¤¤ë¤Ï¤º¤Ç¤¹¤Î¤Ç¡¢ ¤½¤³¤«¤é¤â¤¦°ìÅÙ¤ä¤êÄ¾¤·¤Æ¤¯¤À¤µ¤¤¡£  ¤Ê¤¼ PORTFW ¤¬³°Éô¤ÈÆâÉô¤Î¥¤¥ó¥¿¥Õ¥§¡¼¥¹¤ÎÁÐÊý¤Ç¥È¥é¥Õ¥£¥Ã¥¯¤ò¥ê¥À¥¤¥ì¥¯¥È ¤Ç¤¤Ê¤¤¤Î¤«Íý²ò¤·¤¿¤¤Êý¤Î¤¿¤á¤Ë¡¢ Juanjo ¡ÚÌõÃí: IP_MASQ_FTP ¥â¥¸¥å¡¼¥ë¤Î ºî¼Ô¡Û¤«¤é¤Î¥á¡¼¥ë¤ò¤³¤³¤Ç¤ª¸«¤»¤·¤Þ¤¹¡£ Èà¤Ï¤â¤Ã¤È¤¦¤Þ¤¯ÀâÌÀ¤·¤Æ¤¯¤ì¤Æ¤¤¤Þ¤¹ - <![ %codes CDATA [ <code> From Juanjo Ciarlante --  >¼¡¤Î¤è¤¦¤Ê¾ì¹ç - > >ipmasqadm portfw -a -P tcp -L 1.2.3.4 80 -R 192.168.2.3 80 > >³°Éô¤«¤é¤ÎÀÜÂ³¤ÏÌäÂê¤Ê¤¯Æ°¤¯¤±¤ì¤É¡¢ÆâÉô¤«¤éÆ±¤¸ 1.2.3.4 ¤ËÂÐ¤¹¤ë >ÀÜÂ³Í×µá¤Ï¼ºÇÔ¤·¤Þ¤¹¡£ >¥í¡¼¥«¥ë¥Í¥Ã¥È¤Î 192.168.2.0 ¤«¤é www.periapt.com ¤Ø¤Î¥¢¥¯¥»¥¹¤ò¡¢ >¥×¥í¥¥·¤Ê¤·¤Çµö²Ä¤¹¤ë¤è¤¦¤Ê¥Á¥§¥¤¥ó¤òÍÑ°Õ¤¹¤ë¤³¤È¤Ï¤Ç¤¤Þ¤¹¤«?   ¼ÂºÝ¤Î¤È¤³¤í¤Ç¤¤Ê¤¤¤Í¡£  Âç³µ¡¢ËÍ¤Ï ipmasqadm ¥ë¡¼¥ë¤ò³°Éô¤Î°Ù¤ËÀßÄê¤·¡¢*¤½¤·¤Æ* ¥Ý¡¼¥È¥ê¥À¥¤¥ì¥¯¥¿¤òÆâÉô¤Î¤¿¤á¤ËÀßÄê¤·¤Æ¤¤¤ë¤ó¤À¡£ ¥ê¥À¥¤¥ì¥¯¥·¥ç¥ó¤ÎÁ°¤Ë ipmasqadm ¤Î¥Õ¥Ã¥¯¤¬¤¢¤ë¤«¤é¡¢¤³¤Î¥Õ¥Ã¥¯¤Ï³°Éô ¤«¤é¤ÎÀÜÂ³¤ÎÈ¯À¸¤òÂª¤¨¤ë¡£ _¤À¤±¤É_ ¤½¤¦¤Ç¤Ê¤¤¾ì¹ç¤Ï¡¢²¿¤â¤·¤Ê¤¤¤ÇÁÇÄÌ¤·¤·¤Æ¤·¤Þ¤¦(¤Ä¤Þ¤ê¡¢Å¬Åö¤Ê ¥ë¡¼¥ë¤ÎÅ¬ÍÑ¤¬¹Ô¤ï¤ì¤ë)¡£  ¼ÂºÝ¡¢"³µÇ°Åª¤Ê"ÌäÂê¤Ï¡¢¿¿¤Î¥¯¥é¥¤¥¢¥ó¥È (¥Ô¥¢) ¤Î IP ¥Ñ¥±¥Ã¥È¤Î ÅþÃ£Àè¤¬¡¢ (¤¢¤ê¤¬¤¿¤¤¤³¤È¤Ë¥Þ¥¹¥«¥ì¡¼¥É¤Ë¤è¤Ã¤Æ) ÌÜÅª¤Î¥µ¡¼¥Ð¤È¤·¤Æ Æ±¤¸¥Í¥Ã¥È¥ï¡¼¥¯¤ËÂ¸ºß¤·¤Æ¤¤¤ë¤³¤È¤Ëµ¯°ø¤¹¤ë¡£ ¼ºÇÔ¤¹¤ë"¥í¡¼¥«¥ë¤Ê¥Þ¥¹¥«¥ì¡¼¥É"¤È¤¤¤¦¤Î¤Ï¼¡¤Î¤è¤¦¤Ê¾ì¹ç - ¥¯¥é¥¤¥¢¥ó¥È: 192.168.2.100 ¥Þ¥¹¥«¥ì¡¼¥É: 192.168.2.1 ¥µ¡¼¥Ð: 192.168.2.10  1)¥¯¥é¥¤¥¢¥ó¥È¤«¤é¥µ¡¼¥Ð¤Ø¤Î¥Ñ¥±¥Ã¥È a) ¥¯¥é¥¤¥¢¥ó¥È: 192.168.2.100:1025 -> 192.168.2.1:80 [SYN] b) (¥Þ¥¹¥«¥ì¡¼¥É): 192.168.2.100:1025 -> 192.168.2.10:80 [SYN] (¤½¤·¤Æ¡¢ 192.168.2.1:61000 ¤È 192.168.2.100:1025 ¤¬ ´ØÏ¢¤Å¤±¤é¤ì¤Æµ²±¤µ¤ì¤ë) c) ¥µ¡¼¥Ð: ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥Ñ¥±¥Ã¥È¤ò¼õ¤±¤ë (1b)  2)¥µ¡¼¥Ð¤«¤é¥¯¥é¥¤¥¢¥ó¥È¤Ø¤Î¥Ñ¥±¥Ã¥È a) ¥µ¡¼¥Ð: 192.168.2.10:80 -> 192.168.2.100:1025 [SYN,ACK] b) ¥¯¥é¥¤¥¢¥ó¥È: 192.168.2.100:1025 -> 192.168.2.10:80 [RST]  ¤µ¤¢¡¢ (1a) ¤È (2a) ¤òÈæ¤Ù¤Æ¤´¤é¤ó¡£ ¸«¤Æ¤ÎÄÌ¤ê¡¢Æ±¤¸¥Í¥Ã¥È¥ï¡¼¥¯¤ËÂ¸ºß¤¹¤ë¤â¤ÎÆ±»Î¤À¤È¡¢¥µ¡¼¥Ð¤Ï ¥Þ¥¹¥«¥ì¡¼¥É¤òÄÌ¤é¤º¤ËÄ¾ÀÜ¥¯¥é¥¤¥¢¥ó¥È¤Ë¸þ¤±¤Æ±þÅú¤¹¤ë¤ó¤À¡£ (¥µ¡¼¥Ð¤¬¥Þ¥¹¥«¥ì¡¼¥É¤Ë¥Ñ¥±¥Ã¥ÈÁàºî¤ò¸µ¤ËÌá¤µ¤»¤ë¤è¤¦¤Ê¤³¤È¤Ï¤·¤Ê¤¤) ¤À¤«¤é¡¢¥¯¥é¥¤¥¢¥ó¥È¤ÏÀÜÂ³¤ò¥ê¥»¥Ã¥È¤·¤Æ¤·¤Þ¤¦¡£  ¤³¤ì¤¬Ìò¤ËÎ©¤Ä¤È¤¦¤ì¤·¤¤¤è¡£  ¤è¤í¤·¤¯ Juanjo </code> ]]> <code> From Juanjo Ciarlante -- >¼¡¤Î¤è¤¦¤Ê¾ì¹ç - > >ipmasqadm portfw -a -P tcp -L 1.2.3.4 80 -R 192.168.2.3 80 > >³°Éô¤«¤é¤ÎÀÜÂ³¤ÏÌäÂê¤Ê¤¯Æ°¤¯¤±¤ì¤É¡¢ÆâÉô¤«¤éÆ±¤¸ 1.2.3.4 ¤ËÂÐ¤¹¤ë >ÀÜÂ³Í×µá¤Ï¼ºÇÔ¤·¤Þ¤¹¡£ >¥í¡¼¥«¥ë¥Í¥Ã¥È¤Î 192.168.2.0 ¤«¤é www.periapt.com ¤Ø¤Î¥¢¥¯¥»¥¹¤ò¡¢ >¥×¥í¥¥·¤Ê¤·¤Çµö²Ä¤¹¤ë¤è¤¦¤Ê¥Á¥§¥¤¥ó¤òÍÑ°Õ¤¹¤ë¤³¤È¤Ï¤Ç¤¤Þ¤¹¤«? ¼ÂºÝ¤Î¤È¤³¤í¤Ç¤¤Ê¤¤¤Í¡£ Âç³µ¡¢ËÍ¤Ï ipmasqadm ¥ë¡¼¥ë¤ò³°Éô¤Î°Ù¤ËÀßÄê¤·¡¢*¤½¤·¤Æ* ¥Ý¡¼¥È¥ê¥À¥¤¥ì¥¯¥¿¤òÆâÉô¤Î¤¿¤á¤ËÀßÄê¤·¤Æ¤¤¤ë¤ó¤À¡£ ¥ê¥À¥¤¥ì¥¯¥·¥ç¥ó¤ÎÁ°¤Ë ipmasqadm ¤Î¥Õ¥Ã¥¯¤¬¤¢¤ë¤«¤é¡¢¤³¤Î¥Õ¥Ã¥¯¤Ï³°Éô ¤«¤é¤ÎÀÜÂ³¤ÎÈ¯À¸¤òÂª¤¨¤ë¡£ _¤À¤±¤É_ ¤½¤¦¤Ç¤Ê¤¤¾ì¹ç¤Ï¡¢²¿¤â¤·¤Ê¤¤¤ÇÁÇÄÌ¤·¤·¤Æ¤·¤Þ¤¦(¤Ä¤Þ¤ê¡¢Å¬Åö¤Ê ¥ë¡¼¥ë¤ÎÅ¬ÍÑ¤¬¹Ô¤ï¤ì¤ë)¡£ ¼ÂºÝ¡¢"³µÇ°Åª¤Ê"ÌäÂê¤Ï¡¢¿¿¤Î¥¯¥é¥¤¥¢¥ó¥È (¥Ô¥¢) ¤Î IP ¥Ñ¥±¥Ã¥È¤Î ÅþÃ£Àè¤¬¡¢ (¤¢¤ê¤¬¤¿¤¤¤³¤È¤Ë¥Þ¥¹¥«¥ì¡¼¥É¤Ë¤è¤Ã¤Æ) ÌÜÅª¤Î¥µ¡¼¥Ð¤È¤·¤Æ Æ±¤¸¥Í¥Ã¥È¥ï¡¼¥¯¤ËÂ¸ºß¤·¤Æ¤¤¤ë¤³¤È¤Ëµ¯°ø¤¹¤ë¡£ ¼ºÇÔ¤¹¤ë"¥í¡¼¥«¥ë¤Ê¥Þ¥¹¥«¥ì¡¼¥É"¤È¤¤¤¦¤Î¤Ï¼¡¤Î¤è¤¦¤Ê¾ì¹ç - ¥¯¥é¥¤¥¢¥ó¥È: 192.168.2.100 ¥Þ¥¹¥«¥ì¡¼¥É: 192.168.2.1 ¥µ¡¼¥Ð: 192.168.2.10 1)¥¯¥é¥¤¥¢¥ó¥È¤«¤é¥µ¡¼¥Ð¤Ø¤Î¥Ñ¥±¥Ã¥È a) ¥¯¥é¥¤¥¢¥ó¥È: 192.168.2.100:1025 -> 192.168.2.1:80 [SYN] b) (¥Þ¥¹¥«¥ì¡¼¥É): 192.168.2.100:1025 -> 192.168.2.10:80 [SYN] (¤½¤·¤Æ¡¢ 192.168.2.1:61000 ¤È 192.168.2.100:1025 ¤¬ ´ØÏ¢¤Å¤±¤é¤ì¤Æµ²±¤µ¤ì¤ë) c) ¥µ¡¼¥Ð: ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥Ñ¥±¥Ã¥È¤ò¼õ¤±¤ë (1b) 2)¥µ¡¼¥Ð¤«¤é¥¯¥é¥¤¥¢¥ó¥È¤Ø¤Î¥Ñ¥±¥Ã¥È a) ¥µ¡¼¥Ð: 192.168.2.10:80 -> 192.168.2.100:1025 [SYN,ACK] b) ¥¯¥é¥¤¥¢¥ó¥È: 192.168.2.100:1025 -> 192.168.2.10:80 [RST] ¤µ¤¢¡¢ (1a) ¤È (2a) ¤òÈæ¤Ù¤Æ¤´¤é¤ó¡£ ¸«¤Æ¤ÎÄÌ¤ê¡¢Æ±¤¸¥Í¥Ã¥È¥ï¡¼¥¯¤ËÂ¸ºß¤¹¤ë¤â¤ÎÆ±»Î¤À¤È¡¢¥µ¡¼¥Ð¤Ï ¥Þ¥¹¥«¥ì¡¼¥É¤òÄÌ¤é¤º¤ËÄ¾ÀÜ¥¯¥é¥¤¥¢¥ó¥È¤Ë¸þ¤±¤Æ±þÅú¤¹¤ë¤ó¤À¡£ (¥µ¡¼¥Ð¤¬¥Þ¥¹¥«¥ì¡¼¥É¤Ë¥Ñ¥±¥Ã¥ÈÁàºî¤ò¸µ¤ËÌá¤µ¤»¤ë¤è¤¦¤Ê¤³¤È¤Ï¤·¤Ê¤¤) ¤À¤«¤é¡¢¥¯¥é¥¤¥¢¥ó¥È¤ÏÀÜÂ³¤ò¥ê¥»¥Ã¥È¤·¤Æ¤·¤Þ¤¦¡£ ¤³¤ì¤¬Ìò¤ËÎ©¤Ä¤È¤¦¤ì¤·¤¤¤è¡£ ¤è¤í¤·¤¯ Juanjo </code>  <sect2>2.0.x ·Ï¥«¡¼¥Í¥ë¤Ç¤Î IPPORTFW  ºÇ½é¤Ë¡¢/usr/src/linux ¥Ç¥£¥ì¥¯¥È¥ê¤ËºÇ¿·¤Î 2.0.x ·Ï¥«¡¼¥Í¥ë¤¬¤¢¤ë¤³¤È¤ò ³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤Þ¤À¤À¤Ã¤¿¾ì¹ç¤Î¾ÜºÙ¤Ë¤Ä¤¤¤Æ¤Ï¡¢ <ref id="Kernel-Compile" name="¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ Â³¤¤¤Æ¡¢ "ipportfw.c" ¥×¥í¥°¥é¥à¤È "subs-patch-x.gz" ¥«¡¼¥Í¥ë¥Ñ¥Ã¥Á¤ò <ref id="2.0.x-Requirements" name="2.0.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤ò»²¾È¤·¤ÆÆþ¼ê¤·¡¢ /usr/src/ ¥Ç¥£¥ì¥¯¥È¥ê¤Ë ÃÖ¤¤Þ¤¹¡£  Ãí°Õ - "subs-patch-x.gz" ¤Î "x" ¤Ï¥µ¥¤¥È¤ÇÆþ¼ê¤Ç¤¤ëºÇ¿·¤Î¥Ð¡¼¥¸¥ç¥óÈÖ¹æ¤Ë ÆÉ¤ßÂØ¤¨¤Æ¤¯¤À¤µ¤¤¡£  ¼¡¤Ë¡¢ÆâÉô¥µ¡¼¥Ð¤Ø¤Î FTP ¥È¥é¥Õ¥£¥Ã¥¯¤Î¥Ý¡¼¥ÈÅ¾Á÷¤ò¹Í¤¨¤Æ¤¤¤ë¤Ê¤é¡¢ <ref id="2.0.x-Requirements" name="2.0.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤Ë¤¢¤ë¡¢<bf>¿·¤·¤¤</bf> IP_MASQ_FTP ¥â¥¸¥å¡¼¥ë¤Î¥Ñ¥Ã¥Á¤òÆþ¼ê¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤ì¤Ï2.2.x ·Ï¥«¡¼¥Í¥ë¤È¤Ï°ã¤¦¥Ñ¥Ã¥Á¤Ç¡¢Æ°Åª¤Ë FTP ¥Ý¡¼¥È¤ò³ä¤êÅö¤Æ¤ë µ¡Ç½¤Ê¤É¤ÏÄó¶¡¤µ¤ì¤Æ¤¤¤Ê¤¤¤³¤È¤Ë¤´Ãí°Õ¤¯¤À¤µ¤¤¡£   ¤½¤ì¤«¤é¡¢IPPORTFW ¥Ñ¥Ã¥Á(subs-patch-x.gz)¤ò Linux ¥Ç¥£¥ì¥¯¥È¥ê¤Ë¥³¥Ô¡¼¤·¤Þ¤¹¡£ <tscreen> <verb> cp /usr/src/subs-patch-1.37.gz /usr/src/linux </verb> </tscreen>  ¤Ä¤Å¤¤¤Æ¡¢IPPORTFW ¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó¤òºî¤ë¤¿¤á¤Ë¥Ñ¥Ã¥Á¤òÅ¬ÍÑ¤·¤Þ¤¹¡£ <tscreen> <verb> cd /usr/src/linux zcat subs-patch-1.3x.gz | patch -p1 </verb> </tscreen>  ¤è¤í¤·¤¤¡£ <ref id="Kernel-Compile" name="¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë"> ¤Î¾Ï¤Ë¼¨¤µ¤ì¤Æ¤¤¤ë¤è¤¦¤Ë¡¢¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤·¤Þ¤·¤ç¤¦¡£ ¥«¡¼¥Í¥ë¤Î¹½À®»þ¤ËÍ¸ú¤Ë¤Ê¤Ã¤¿ IPPORTFW ¥ª¥×¥·¥ç¥ó¤ò¤³¤³¤Ç¤Ï YES ¤Ë ÀßÄê¤·¤Æ¤¯¤À¤µ¤¤¡£ ¥³¥ó¥Ñ¥¤¥ë¤¬´°Î»¤·¡¢ºÆµ¯Æ°¤·¤¿¤Ê¤é¡¢¤³¤Î¾Ï¤ÎÀâÌÀ¤òÂ³¤±¤Þ¤¹¡£  ¿·¤·¤¯¥³¥ó¥Ñ¥¤¥ë¤µ¤ì¤¿¥«¡¼¥Í¥ë¤ò»È¤Ã¤Æ¡¢¼ÂºÝ¤Î"IPPORTFW" ¥×¥í¥°¥é¥à¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¤Þ¤¹¡£ <tscreen> <verb> cd /usr/src gcc ipportfw.c -o ipportfw mv ipportfw /usr/local/sbin </verb> </tscreen>  ¤µ¤Æ¡¢¤³¤ÎÎã¤Ç¤Ï¤¢¤Ê¤¿¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î TCP/IP ¥¢¥É¥ì¥¹¤ËÂÐ¤¹¤ë Á´¤Æ¤Î WWW ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥È¥é¥Õ¥£¥Ã¥¯ (¥Ý¡¼¥È80) ¤òÆâÉô¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ ¥Þ¥·¥ó¤Î IP ¥¢¥É¥ì¥¹¡¢ 192.168.0.10 ¤Ë¸þ¤±¤ë¾ì¹ç¤ò¼è¤ê¾å¤²¤Þ¤¹¡£  <bf>Ãí°Õ - </bf> ¥Ý¡¼¥È 80 ¤Ç¥Ý¡¼¥ÈÅ¾Á÷¤òÍ¸ú¤Ë¤¹¤ë¤È¡¢ Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤«¤é¤Ï¤½¤Î¥Ý¡¼¥È¤Ï»È¤¨¤Ê¤¯¤Ê¤ê¤Þ¤¹¡£ ¤Ä¤Þ¤ê¡¢¤â¤·Í½¤á¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¾å¤Ç WWW ¥µ¡¼¥Ð¤¬Æ°ºî¤·¤Æ¤¤¤¿¤È¤·¤Æ¡¢ ¤½¤Î¥µ¡¼¥Ð¤ÇÆâÉô¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥³¥ó¥Ô¥å¡¼¥¿¤Ø¤Î¥Ý¡¼¥È 80 ¤Ç¤ÎÅ¾Á÷¤ò ¹Ô¤Ã¤¿¤Ê¤é¤Ð¡¢Á´¤Æ¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î¥æ¡¼¥¶¤Ï¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¾å¤Î ¥Ú¡¼¥¸¤Ç¤Ï¤Ê¤¯¡¢-ÆâÉô¤Î- WWW ¥µ¡¼¥Ð¾å¤Î¥Ú¡¼¥¸¤ò¸«¤ë¤³¤È¤Ë¤Ê¤ê¤Þ¤¹¡£ ¤³¤ì¤ò²óÈò¤¹¤ë¤¿¤á¤ÎÍ£°ì¤ÎÊýË¡¤Ï¡¢¤¿¤È¤¨¤Ð 8080 ¤Î¤è¤¦¤ÊÊÌ¤Ê¥Ý¡¼¥È¤Ç Å¾Á÷¤ò¤«¤±¤ë¤³¤È¤Ç¤¹¡£ ¤³¤ì¤ÇÆ°ºî¤Ï¤Ç¤¤Þ¤¹¤¬¡¢ÆâÉô¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ WWW ¥µ¡¼¥Ð¤ËÂÐ¤¹¤ë ¥¢¥¯¥»¥¹¤ËÂÐ¤·¤Æ¡¢Á´¤Æ¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î¥æ¡¼¥¶¤Ï :8080 ¤È¤¤¤¦Ê¸»ú¤ò URL ¤ËÄÉ²Ã¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£  ¤¤¤º¤ì¤Ë¤»¤è¡¢¥Ý¡¼¥ÈÅ¾Á÷¤òÍ¸ú¤Ë¤¹¤ë¤Ë¤Ï¡¢/etc/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤ò ÊÔ½¸¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£¤½¤·¤Æ¡¢¼¡¤Î¤è¤¦¤Ê¹Ô¤òÄÉ²Ã¤· "$extip" ¤È¤¤¤¦Ê¸»úÎó¤ò ¤¢¤Ê¤¿¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î IP ¥¢¥É¥ì¥¹¤ËÃÖ¤´¹¤¨¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£  <bf>Ãí°Õ - </bf> ¤â¤·¡¢ PPP ¤ä ADSL ¤ä ¥±¡¼¥Ö¥ë¥â¥Ç¥à¤Ê¤É¤Î¤è¤¦¤Ê·Á¤Ç ISP ¤«¤éÆ°Åª¤Ê IP ¥¢¥É¥ì¥¹³ä¤êÅö¤Æ¤ò¼õ¤±¤Æ¤¤¤ë¤Ê¤é¤Ð¡¢ /etc/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤Ï¤â¤Ã¤ÈÃÎÅª¤ËÆ°ºî¤¹¤ë¤è¤¦ºîÀ®¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ ¤½¤Î¤¿¤á¤Ë¤Ï¡¢´û½Ð¤Î <ref id="Strong-IPCHAINS-Rulesets" name="¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È"> ¤Î¾Ï¤«¡¢ <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - Section 10"> ¤ò»²¾È¤·¤Æ¡¢¶¯¸Ç¤Ê¥ë¡¼¥ë¤ÈÆ°Åª¤Ê IP ¥¢¥É¥ì¥¹³ä¤êÅö¤Æ¤Ë´Ø¤¹¤ë¾ðÊó¤ò »²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤³¤Ç¤Ï¤Á¤ç¤Ã¤È¤·¤¿¥Ò¥ó¥È¤À¤±¤ò - PPP ¥æ¡¼¥¶¤Ç¤Ï /etc/ppp/ip-up ¤Ç¤¹¡£ <![ %codes CDATA [ <tscreen> <verb> /etc/rc.d/rc.firewall --  #echo "IPPORTFW ¤Ë¤è¤ë¥ê¥À¥¤¥ì¥¯¥·¥ç¥ó¤ò³°Éô LAN ¤Ë¤Ä¤¤¤ÆÍ¸ú¤Ë .." # /usr/local/sbin/ipportfw -C /usr/local/sbin/ipportfw -A -t$extip/80 -R 192.168.0.10/80  # ¥Ý¡¼¥È 20 ¤ËÂÐ¤¹¤ë¥Ý¡¼¥ÈÅ¾Á÷¤ÏÆ°ºîÃæ¤ÎÀÜÂ³¤ËÂÐ¤·¤Æ¤ÏÉÔÍ×¤Ç¤¹¡£ # ÆâÉô¤Ë¤¢¤ë FTP ¥µ¡¼¥Ð¤Ï¥Ý¡¼¥È 20 ÈÖ¤Ç¤ÎÀÜÂ³¤ò³«»Ï¤·¤Æ¡¢´ûÂ¸¤Î¤ä¤êÊý¤Ç¤Î # ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥³¥ó¥Ô¥å¡¼¥¿¤ò¼è¤ê°·¤¦¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ -- </verb> </tscreen> ]]> <tscreen> <verb> /etc/rc.d/rc.firewall -- #echo "IPPORTFW ¤Ë¤è¤ë¥ê¥À¥¤¥ì¥¯¥·¥ç¥ó¤ò³°Éô LAN ¤Ë¤Ä¤¤¤ÆÍ¸ú¤Ë .." # /usr/local/sbin/ipportfw -C /usr/local/sbin/ipportfw -A -t$extip/80 -R 192.168.0.10/80 # ¥Ý¡¼¥È 20 ¤ËÂÐ¤¹¤ë¥Ý¡¼¥ÈÅ¾Á÷¤ÏÆ°ºîÃæ¤ÎÀÜÂ³¤ËÂÐ¤·¤Æ¤ÏÉÔÍ×¤Ç¤¹¡£ # ÆâÉô¤Ë¤¢¤ë FTP ¥µ¡¼¥Ð¤Ï¥Ý¡¼¥È 20 ÈÖ¤Ç¤ÎÀÜÂ³¤ò³«»Ï¤·¤Æ¡¢´ûÂ¸¤Î¤ä¤êÊý¤Ç¤Î # ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥³¥ó¥Ô¥å¡¼¥¿¤ò¼è¤ê°·¤¦¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ -- </verb> </tscreen>  ¤³¤ì¤À¤±¤Ç¤¹¡ª /etc/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤òºÆÅÙÆ°¤«¤·¤Æ¥Æ¥¹¥È¤·¤Þ¤·¤ç¤¦¡ª  ¤â¤·¤â¡¢"ipfwadm: setsockopt failed: Protocol not available" ¤È¤¤¤¦¥¨¥é¡¼¥á¥Ã¥»¡¼¥¸¤¬ ½Ð¤Æ¤·¤Þ¤Ã¤¿¾ì¹ç¤Ï¡¢¤¢¤Ê¤¿¤Ï¤Þ¤À¿·¤·¤¤¥«¡¼¥Í¥ë¤òÆ°ºî¤µ¤»¤Æ¤¤¤Ê¤¤¤³¤È¤Ë¤Ê¤ê¤Þ¤¹¡£ ¿·¤·¤¤¥«¡¼¥Í¥ë¥Õ¥¡¥¤¥ë¤òÅ¬ÀÚ¤Ê¾ì½ê¤Ë°ÜÆ°¤µ¤»¤Æ¡¢LILO ¥³¥Þ¥ó¥É¤òºÆ¼Â¹Ô¤·¡¢¥·¥¹¥Æ¥à¤ò ºÆµ¯Æ°¤µ¤»¤Æ¤¯¤À¤µ¤¤¡£  FTP ¥µ¡¼¥Ð¤ËÂÐ¤¹¤ë¥Ý¡¼¥ÈÅ¾Á÷ -  ¤â¤·ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤ËÂ¸ºß¤¹¤ë FTP ¥µ¡¼¥Ð¤Ø¤Î¥Ý¡¼¥ÈÅ¾Á÷¤ò¹Í¤¨¤Æ¤¤¤ë¤Ê¤é¡¢»öÂÖ¤Ï ¤è¤êÊ£»¨¤Ë¤Ê¤ê¤Þ¤¹¡£¤È¤¤¤¦¤Î¤â¡¢É¸½àÅª¤Ê IP_MASQ_FTP ¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¤Ï ¤³¤Î¤è¤¦¤ÊÆ°ºî¤Î¤¿¤á¤Ë¤Ïºî¤é¤ì¤Æ¤¤¤Ê¤¤¤Ë¤â´Ø¤é¤º¡¢²¿¿Í¤«¤Î¥æ¡¼¥¶¤«¤é¤ÏÌäÂê¤Ê¤¯Æ°¤¤¤Æ ¤¤¤ë¤È¤¤¤¦Êó¹ð¤¬¤¢¤ë¤«¤é¤Ç¤¹¡£»ä¤ÎÃÎ¤ë¤«¤®¤ê¡¢¥Ñ¥Ã¥Á¤ò¤¢¤Æ¤Ê¤¤¾õÂÖ¤Ç¤Ï 30 Ê¬¤ò±Û¤¨¤ë Å¾Á÷»þ´Ö¤òÍ×¤¹¤ë¾ì¹ç¤Ë¤ª¤¤¤Æ¤Ï¡¢ÌäÂê¤¬¤Ê¤¤¤È¸À¤Ã¤Æ¤¤¤ë¥æ¡¼¥¶¤Ç¤âÅ¾Á÷¤Ï¼ºÇÔ¤¹¤ë¤È »×¤¤¤Þ¤¹¡£¤É¤Á¤é¤Ë¤»¤è¡¢´ûÂ¸¤Î ip_masq_ftp ¥â¥¸¥å¡¼¥ë¤ò»È¤Ã¤¿¼¡¤Î¤è¤¦¤Ê¥Ý¡¼¥ÈÅ¾Á÷¤Î ÊýË¡¤ò»î¤ß¤Æ¡¢¤¢¤Ê¤¿¤Î´Ä¶¤ÇÆ°¤¯¤«¤É¤¦¤«³Î¤«¤á¤Æ¸«¤ë¤³¤È¤ò¤ªÁ¦¤á¤·¤Þ¤¹¡£ ¤â¤·¤½¤ì¤¬Æ°¤«¤Ê¤¤¤Ê¤é¤Ð¡¢²þÎÉ¤µ¤ì¤¿ ip_masq_ftp ¥â¥¸¥å¡¼¥ë¤ò»î¤·¤Þ¤·¤ç¤¦¡£  Fred Viles ¤Ï¥Ý¡¼¥ÈÅ¾Á÷¤¬Æ°ºî¤¹¤ë¤è¤¦¤Ë²þÎÉ¤·¤¿ IP_MASQ_FTP ¥â¥¸¥å¡¼¥ë¤ò¡¢¤½¤ì¤é ¤òÉ¬Í×¤È¤¹¤ë¥æ¡¼¥¶¤Î¤¿¤á¤ËºîÀ®¤·¤Æ¤¤¤Þ¤¹¡£¤³¤Î¥â¥¸¥å¡¼¥ë¤¬»È¤¨¤ë¤«¤É¤¦¤«¤òÄ´¤Ù¤¿¤¤ ¤Ê¤é¡¢¼¡¤Î¥¢¡¼¥«¥¤¥Ö¤ò¥À¥¦¥ó¥í¡¼¥É¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£Fred ¤ÎºîÀ®¤·¤¿Ê¸½ñ¤Ç¤Ï ¾ÜºÙ¤Ë½Ò¤Ù¤é¤ì¤Æ¤¤¤Þ¤¹¡£¤Þ¤¿¡¢¤³¤Î¥Ñ¥Ã¥Á¤Ï¤¢¤¯¤Þ¤Ç¼Â¸³Åª¤Ê¤â¤Î¤Ê¤Î¤Ç¤½¤Î¤Ä¤â¤ê¤Ç °·¤Ã¤Æ¤¯¤À¤µ¤¤¡£¤µ¤é¤Ë¡¢2.0 ·Ï¥«¡¼¥Í¥ë¤«¤é 2.2 ·Ï¥«¡¼¥Í¥ë¤Þ¤Ç¤Î¤¤¤¯¤Ä¤«¤Î¥Ñ¥Ã¥Á¤·¤« Â¸ºß¤·¤Æ¤¤¤Þ¤»¤ó¡£  ¤µ¤Æ¡¢2.0 ·Ï¥«¡¼¥Í¥ëÍÑ¤Î¥Ñ¥Ã¥Á¤òÆ°¤«¤¹¤¿¤á¤Ë¤Ï¡¢¼¡¤Î»ö¹à¤¬É¬Í×¤Ç¤¹ - <itemize>  <item>¤³¤Î¾Ï¤ÎºÇ½é¤ËÀâÌÀ¤·¤¿¤è¤¦¤Ë¡¢IPPORTFW ¥«¡¼¥Í¥ë¥Ñ¥Ã¥Á¤òÅ¬ÍÑ¤·¤Þ¤¹¡£  <item>"msqsrv-patch-36" ¥Ñ¥Ã¥Á¤ò <ref id="2.0.x-Requirements" name="2.0.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤Ë¤¢¤ë Fred Viles ¤Î FTP ¥µ¡¼¥Ð¤«¤é¼è¤Ã¤Æ¤¤Æ¡¢/usr/src/linux ¤ËÃÖ¤¤Þ¤¹¡£  <item>"cat msqsrv-patch-36 | patch -p1" ¤ò¼Â¹Ô¤·¤Æ¡¢¿·¤·¤¤¥³¡¼¥É¤ò¥«¡¼¥Í¥ë¤ËÅ¬ÍÑ¤·¤Þ¤¹¡£  <item>¤Ä¤Å¤¤¤Æ¡¢¥ª¥ê¥¸¥Ê¥ë¤Î "ip_masq_ftp.c" ¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¤ò¿·¤·¤¤¤â¤Î¤Ë ÃÖ¤´¹¤¨¤Þ¤¹¡£ <itemize> <item>mv /usr/src/linux/net/ipv4/ip_masq_ftp.c /usr/src/linux/net/ipv4/ip_masq_ftp.c.orig <item>mv /usr/src/linux/ip_masq_ftp.c /usr/src/linux/net/ipv4/ip_masq_ftp.c </itemize>  <item>ºÇ¸å¤Ë¡¢¿·¤·¤¤¥³¡¼¥É¤ò´Þ¤ó¤À¥«¡¼¥Í¥ë¤ò¥Ó¥ë¥É¤·¤Æ¥¤¥ó¥¹¥È¡¼¥ë¤·¤Þ¤¹¡£ </itemize>  ¤³¤Îºî¶È¤ò½ª¤¨¤Æ¤«¤é¡¢/etc/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤òÊÔ½¸¤·¤Æ¡¢¼¡¤Î¤è¤¦¤Ê¹Ô¤òÄÉ²Ã ¤·¤Þ¤¹¤¬¡¢"$extip"¤ÎÉôÊ¬¤Ï³°Éô IP ¥¢¥É¥ì¥¹¤È¤Ê¤ë¤è¤¦¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£  ¤³¤ÎÎã¤Ç¤Ï¡¢ÀèÄø¤Î¤è¤¦¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤«¤é¤¢¤Ê¤¿¤Î TCP/IP ¥¢¥É¥ì¥¹¤ËÂÐ¤¹¤ë FTP (¥Ý¡¼¥ÈÈÖ¹æ 21) ¤ÎÀÜÂ³Í×µá¤Ï¡¢ÆâÉô¤Ë¤¢¤ë IP ¥¢¥É¥ì¥¹ 192.168.0.10 ¤Ë¤¢¤ë¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥³¥ó¥Ô¥å¡¼¥¿¤Ë Å¾Á÷¤µ¤ì¤Þ¤¹¡£  Ãí°Õ - °ìÃ¶¥Ý¡¼¥È 21 ¤Ç¥Ý¡¼¥ÈÅ¾Á÷¤òÍ¸ú¤Ë¤¹¤ë¤È¡¢¤³¤Î¥Ý¡¼¥È¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤«¤é¤Ï»È¤¨¤Ê¤¯¤Ê¤ê¤Þ¤¹¡£ ¤Ä¤Þ¤ê¡¢ FTP ¥µ¡¼¥Ð¤¬¤¢¤é¤«¤¸¤á¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤ÇÆ°ºî¤·¤Æ¤¤¤¿¤È¤·¤¿¤é¡¢ ¥Ý¡¼¥ÈÅ¾Á÷¤Ï¤¹¤Ù¤Æ¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤«¤é¤ÎÀÜÂ³¤ËÂÐ¤·¤Æ¤Ï¡¢ ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤Ç¤Ï¤Ê¤¯ÆâÉô¤Î FTP ¥µ¡¼¥Ð¤Ø¤ÎÀÜÂ³¤ò Äó¶¡¤¹¤ë¤³¤È¤Ë¤Ê¤ê¤Þ¤¹¡£ <![ %codes CDATA [ <tscreen> <verb> /etc/rc.d/rc.firewall --  #echo "IPPORTFW ¤Ë¤è¤ë¥ê¥À¥¤¥ì¥¯¥·¥ç¥ó¤ò³°Éô LAN ¤Ë¤Ä¤¤¤ÆÍ¸ú¤Ë .." # /usr/local/sbin/ipportfw -C /usr/local/sbin/ipportfw -A -t$extip/21 -R 192.168.0.10/21  #Ãí°Õ - ¤â¤·¤¢¤Ê¤¿¤¬Ê£¿ô¤Î¥í¡¼¥«¥ë¤Ê¥Ý¡¼¥ÈÈÖ¹æ¤ò»È¤Ã¤Æ¤¤¤Æ¥Ý¡¼¥ÈÅ¾Á÷¤ò # Ê£¿ô¤Î FTP ¥µ¡¼¥Ð(¤¿¤È¤¨¤Ð 21,2121,2112¤Ê¤É)¤ËÂÐ¤·¤Æ¹Ô¤¤¤¿¤¤¤Ê¤é # ip_masq_ftp ¥â¥¸¥å¡¼¥ë¤òÊ£¿ô¤Î¥Ý¡¼¥È¤ËÂÐ¤·¤Æ¥ê¥¹¥ó¤¹¤ë¤è¤¦¤ËÀßÄê # ¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£¤½¤Î¤¿¤á¤Ë¤Ï¡¢¤¿¤È¤¨¤Ð¡¢ # /etc/rc.d/rc.firewall ¤ÎÆâÍÆ¤ò # # /sbin/modprobe ip_masq_ftp ports=21,2121,2112 # # ¤Î¤è¤¦¤Ë¤·¡¢¤³¤ì¤¬Í¸ú¤È¤Ê¤ë¤è¤¦¤Ë /etc/rc.d/rc.firewall ¥¹¥¯¥ê¥×¥È¤ò # ºÆÅÙ¼Â¹Ô¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£  # ¥Ý¡¼¥È 20 ¤ËÂÐ¤¹¤ë¥Ý¡¼¥ÈÅ¾Á÷¤ÏÆ°ºîÃæ¤ÎÀÜÂ³¤ËÂÐ¤·¤Æ¤Ï¤ª¤½¤é¤¯ÉÔÍ×¤Ç¤¹¡£ # ÆâÉô¤Ë¤¢¤ë FTP ¥µ¡¼¥Ð¤Ï¥Ý¡¼¥È 20 ÈÖ¤Ç¤ÎÀÜÂ³¤ò³«»Ï¤·¤Æ¡¢´ûÂ¸¤Î¤ä¤êÊý¤Ç¤Î # ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥³¥ó¥Ô¥å¡¼¥¿¤ò¼è¤ê°·¤¦¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ -- </verb> </tscreen> ]]> <tscreen> <verb> /etc/rc.d/rc.firewall -- #echo "IPPORTFW ¤Ë¤è¤ë¥ê¥À¥¤¥ì¥¯¥·¥ç¥ó¤ò³°Éô LAN ¤Ë¤Ä¤¤¤ÆÍ¸ú¤Ë .." # /usr/local/sbin/ipportfw -C /usr/local/sbin/ipportfw -A -t$extip/21 -R 192.168.0.10/21 #Ãí°Õ - ¤â¤·¤¢¤Ê¤¿¤¬Ê£¿ô¤Î¥í¡¼¥«¥ë¤Ê¥Ý¡¼¥ÈÈÖ¹æ¤ò»È¤Ã¤Æ¤¤¤Æ¥Ý¡¼¥ÈÅ¾Á÷¤ò # Ê£¿ô¤Î FTP ¥µ¡¼¥Ð(¤¿¤È¤¨¤Ð 21,2121,2112¤Ê¤É)¤ËÂÐ¤·¤Æ¹Ô¤¤¤¿¤¤¤Ê¤é # ip_masq_ftp ¥â¥¸¥å¡¼¥ë¤òÊ£¿ô¤Î¥Ý¡¼¥È¤ËÂÐ¤·¤Æ¥ê¥¹¥ó¤¹¤ë¤è¤¦¤ËÀßÄê # ¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£¤½¤Î¤¿¤á¤Ë¤Ï¡¢¤¿¤È¤¨¤Ð¡¢ # /etc/rc.d/rc.firewall ¤ÎÆâÍÆ¤ò # # /sbin/modprobe ip_masq_ftp ports=21,2121,2112 # # ¤Î¤è¤¦¤Ë¤·¡¢¤³¤ì¤¬Í¸ú¤È¤Ê¤ë¤è¤¦¤Ë /etc/rc.d/rc.firewall ¥¹¥¯¥ê¥×¥È¤ò # ºÆÅÙ¼Â¹Ô¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ # ¥Ý¡¼¥È 20 ¤ËÂÐ¤¹¤ë¥Ý¡¼¥ÈÅ¾Á÷¤ÏÆ°ºîÃæ¤ÎÀÜÂ³¤ËÂÐ¤·¤Æ¤Ï¤ª¤½¤é¤¯ÉÔÍ×¤Ç¤¹¡£ # ÆâÉô¤Ë¤¢¤ë FTP ¥µ¡¼¥Ð¤Ï¥Ý¡¼¥È 20 ÈÖ¤Ç¤ÎÀÜÂ³¤ò³«»Ï¤·¤Æ¡¢´ûÂ¸¤Î¤ä¤êÊý¤Ç¤Î # ¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥³¥ó¥Ô¥å¡¼¥¿¤ò¼è¤ê°·¤¦¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ -- </verb> </tscreen>  ¤³¤ì¤À¤±¤Ç¤¹! /etc/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤òºÆÅÙÆ°¤«¤·¤Æ¥Æ¥¹¥È¤·¤Þ¤·¤ç¤¦!  ¤â¤·¤â¡¢"ipfwadm: setsockopt failed: Protocol not available" ¤È¤¤¤¦¥¨¥é¡¼¥á¥Ã¥»¡¼¥¸¤¬ ½Ð¤Æ¤·¤Þ¤Ã¤¿¾ì¹ç¤Ï¡¢¤¢¤Ê¤¿¤Ï¤Þ¤À¿·¤·¤¤¥«¡¼¥Í¥ë¤òÆ°ºî¤µ¤»¤Æ¤¤¤Ê¤¤¤³¤È¤Ë¤Ê¤ê¤Þ¤¹¡£ ¿·¤·¤¤¥«¡¼¥Í¥ë¥Õ¥¡¥¤¥ë¤òÅ¬ÀÚ¤Ê¾ì½ê¤Ë°ÜÆ°¤µ¤»¤Æ¡¢LILO ¥³¥Þ¥ó¥É¤òºÆ¼Â¹Ô¤·¡¢¥·¥¹¥Æ¥à¤ò ºÆµ¯Æ°¤µ¤»¤Æ¤¯¤À¤µ¤¤¡£¿·¤·¤¤¥«¡¼¥Í¥ë¤òÆ°¤«¤·¤Æ¤¤¤ë¤Ä¤â¤ê¤Ê¤Î¤Ë¡¢¤³¤Î¥¨¥é¡¼¤¬½Ð¤¿¾ì¹ç¤Ï¡¢ "ls /proc/net" ¤ò¼Â¹Ô¤·¤Æ "ip_portfw" ¥Õ¥¡¥¤¥ë¤¬Â¸ºß¤¹¤ë¤«¤É¤¦¤«³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤ì¤¬Â¸ºß¤·¤Ê¤¤¾ì¹ç¤Ï¡¢¥«¡¼¥Í¥ë¤Î¹½À®»þ¤Ë¥¨¥é¡¼¤¬½Ð¤Æ¤¤¤ë¤Ï¤º¤Ç¤¹¡£¤â¤¦°ìÅÙ¤ä¤êÄ¾¤·¤Þ¤·¤ç¤¦¡£ <label id="CuSeeme">   <sect1> CU-SeeMe ¤È Linux ¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É  Linux ¤Ç¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ç¤Ï "ip_masq_cuseeme" ¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¤ò »È¤¦¤³¤È¤Ë¤è¤Ã¤Æ CuSeeme ¤ò¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤Þ¤¹¡£ ¤³¤Î¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¤Ï¡¢ /etc/rc.d/rc.firewall ¥¹¥¯¥ê¥×¥È¤Ç ÆÉ¤ß¤³¤Þ¤ì¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ "ip_masq_cuseeme" ¥â¥¸¥å¡¼¥ë¤¬ÆÉ¤ß¹þ¤Þ¤ì¤ë¤È¡¢¥ê¥â¡¼¥È¤Î¥ê¥Õ¥ì¥¯¥¿ ¡ÚÌõÃí: CU-SeeMe¤Î¥µ¡¼¥Ð¤Î¤³¤È¡Û¤ä¥æ¡¼¥¶¤È¤Î´Ö¤ÇÀÜÂ³¤ò¹Ô¤¦¤³¤È¤¬¤Ç¤¤Þ¤¹¡£  Ãí°Õ - CuSeeme ¤ò»ÈÍÑ¤¹¤ë¾ì¹ç¤Ï¡¢IPAUTOFW ¤è¤ê IPPORTFW ¥Ä¡¼¥ë¤ò»È¤¤¤Þ¤·¤ç¤¦¡£  ¤â¤· CuSeeMe ¤ËÂÐ¤·¤Æ¤â¤¦¾¯¤·ÌÀ³Î¤Ê¾ðÊó¤¬É¬Í×¤Ê¤é¤Ð¡¢ <url url="http://www.swampgas.com/vc/ipmcus.htm" name="Michael Owings's CuSeeMe page"> ¤Ë¤¢¤ë Mini-HOWTO ¤« <htmlurl url="http://ipmasq.cjb.net/" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤Ë¥ß¥é¡¼¤µ¤ì¤¿ÆâÍÆ¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£ <label id="ICQ">   <sect1>¥ß¥é¥Ó¥ê¥¹¼Ò¤Î ICQ  Linux ¤Î¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤ÎÇØ¸å¤Ç ICQ ¤òÆ°¤«¤¹¤è¤¦¤Ë¤¹¤ë¤¿¤á¤ÎÊýË¡¤ÏÆó¤Ä¤¢¤ê¤Þ¤¹¡£ °ì¤Ä¤ÎÊýË¡¤Ï¡¢ICQ ¤Î¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤ò»È¤¦¤³¤È¤Ç¡¢¤â¤¦°ì¤Ä¤Ï IPPORTFW ¤ò »È¤¦¤³¤È¤Ç¤¹¡£  ICQ ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤Ë¤Ï¤¤¤¯¤Ä¤«¤ÎÍøÅÀ¤¬¤¢¤ê¤Þ¤¹¡£¤³¤Î¥â¥¸¥å¡¼¥ë¤ÏÊ£¿ô ¤Î ICQ ¥æ¡¼¥¶¤ËÂÐ¤·¤Æ¤âÃ±½ã¤ÊÀßÄê¤ÇÆ°ºî¤·¤Þ¤¹¡£¤Þ¤¿ ICQ ¥¯¥é¥¤¥¢¥ó¥È¥×¥í¥°¥é¥à¤Ë ÂÐ¤·¤Æ¤Ê¤ó¤éÆÃÊÌ¤ÊÊÑ¹¹¤ò²Ã¤¨¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤»¤ó¡£ºÇ¶á¤Ç¤Ï ¤³¤Î¥â¥¸¥å¡¼¥ë¤Î¥Ð¡¼¥¸¥ç¥ó 2.2 ·Ï¥«¡¼¥Í¥ë¤Ø¤Î¥¢¥Ã¥×¥Ç¡¼¥È¤Ç¤Ï¥Õ¥¡¥¤¥ëÅ¾Á÷¤ä¥ê¥¢¥ë¥¿¥¤¥à¥Á¥ã¥Ã¥È¤â¥µ¥Ý¡¼¥È¤¹¤ë ¤è¤¦¤Ë¤Ê¤ê¤Þ¤·¤¿¡£  ¤·¤«¤·¡¢2.0 ·Ï¥«¡¼¥Í¥ë¤Ç¤Ï¥Õ¥¡¥¤¥ëÅ¾Á÷¤ä¥ê¥¢¥ë¥¿¥¤¥à¥Á¥ã¥Ã¥È¤Ï´°Á´¤Ë¤Ï¥µ¥Ý¡¼¥È ¤µ¤ì¤Æ¤¤¤Þ¤»¤ó¡£¤È¤â¤«¤¯¡¢2.2 ·Ï¥«¡¼¥Í¥ë¤Î¾å¤Ç IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò¹Ô¤Ã¤Æ ICQ ¤òÆ°¤«¤¹ ¤è¤¦¤Ë¤·¤¿¤Û¤¦¤¬¤¤¤¤¤À¤í¤¦¤È¤Ï»×¤¤¤Þ¤¹¡£  IPPORTFW ¤òÀßÄê¤¹¤ë¾ì¹ç¡¢Linux ¤È ICQ ¥¯¥é¥¤¥¢¥ó¥È¤ËÂÐ¤·¤Æ ICQ ¥á¥Ã¥»¡¼¥¸¥ó¥°¡¢ URL¡¢¥Á¥ã¥Ã¥È¡¢¥Õ¥¡¥¤¥ëÅ¾Á÷¤Ê¤É¤Ê¤É¤òÊÑ¹¹¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£  ¤â¤·¡¢ Andrew Deryabin ¤Î <htmlurl url="mailto:djsf@usa.net" name="djsf@usa.net"> 2.2 ·Ï¥«¡¼¥Í¥ë¸þ¤± ICQ IP ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤Ë ´Ø¿´¤¬¤¢¤ë¤Ê¤é¡¢ <ref id="2.2.x-Requirements" name="2.2.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤Ë¾Ü¤·¤¤ÀâÌÀ¤¬¤¢¤ê¤Þ¤¹¡£  ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤ÎÆâÉô¤Ç ICQ ¤òÆ°¤«¤¹¤¿¤á¤Ë¸ÅÅµÅª¤ÊÊýË¡¤ò¼è¤ê¤¿¤¤¾ì¹ç¤Ï¡¢ ¼¡¤Î¤è¤¦¤ÊÊýË¡¤Ç¹Ô¤¤¤Þ¤¹ - <itemize>  <item> ¤Þ¤ººÇ½é¤Ë¡¢IPPPORTFW ¤òÍ¸ú¤Ë¤·¤¿¾õÂÖ¤Ç¥«¡¼¥Í¥ë¤òÆ°ºî¤µ¤»¤Þ¤¹¡£ <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ <itemize>  <item> Â³¤¤¤Æ¡¢/etc/rc.d/rc.firewall ¥Õ¥¡¥¤¥ë¤Ë¼¡¤Î¤è¤¦¤Êµ½Ò¤òÄÉ²Ã¤·¤Þ¤¹¡£ ¤³¤ÎÎã¤Ç¤Ï¡¢10.1.2.3 ¤Ï³°Éô¤Î IP ¥¢¥É¥ì¥¹¤Ç¡¢ÆâÉô¤Î¥³¥ó¥Ô¥å¡¼¥¿¤Î IP ¥¢¥É¥ì¥¹¤Ï 192.168.0.10 ¤Ç¤¢¤ë¤È²¾Äê¤·¤Æ¤¤¤Þ¤¹¡£  ²¼µ¤Ï¡¢IPFWADM ¤Ë¤è¤ë 2.0 ·Ï¥«¡¼¥Í¥ë¤Î¤¿¤á¤ÎÎã¤Ç¤¹¡£  <verb> ¤³¤³¤ÇÆó¤Ä¤ÎÎã¤ò¤¢¤²¤Æ¤ª¤¤Þ¤·¤¿¡£¤É¤Á¤é¤âÌäÂê¤Ê¤¯Æ°ºî¤·¤Þ¤¹¡£ Îã¤½¤Î 1 -- /usr/local/sbin/ipportfw -A -t10.1.2.3/2000 -R 192.168.0.10/2000 /usr/local/sbin/ipportfw -A -t10.1.2.3/2001 -R 192.168.0.10/2001 /usr/local/sbin/ipportfw -A -t10.1.2.3/2002 -R 192.168.0.10/2002 /usr/local/sbin/ipportfw -A -t10.1.2.3/2003 -R 192.168.0.10/2003 /usr/local/sbin/ipportfw -A -t10.1.2.3/2004 -R 192.168.0.10/2004 /usr/local/sbin/ipportfw -A -t10.1.2.3/2005 -R 192.168.0.10/2005 /usr/local/sbin/ipportfw -A -t10.1.2.3/2006 -R 192.168.0.10/2006 /usr/local/sbin/ipportfw -A -t10.1.2.3/2007 -R 192.168.0.10/2007 /usr/local/sbin/ipportfw -A -t10.1.2.3/2008 -R 192.168.0.10/2008 /usr/local/sbin/ipportfw -A -t10.1.2.3/2009 -R 192.168.0.10/2009 /usr/local/sbin/ipportfw -A -t10.1.2.3/2010 -R 192.168.0.10/2010 /usr/local/sbin/ipportfw -A -t10.1.2.3/2011 -R 192.168.0.10/2011 /usr/local/sbin/ipportfw -A -t10.1.2.3/2012 -R 192.168.0.10/2012 /usr/local/sbin/ipportfw -A -t10.1.2.3/2013 -R 192.168.0.10/2013 /usr/local/sbin/ipportfw -A -t10.1.2.3/2014 -R 192.168.0.10/2014 /usr/local/sbin/ipportfw -A -t10.1.2.3/2015 -R 192.168.0.10/2015 /usr/local/sbin/ipportfw -A -t10.1.2.3/2016 -R 192.168.0.10/2016 /usr/local/sbin/ipportfw -A -t10.1.2.3/2017 -R 192.168.0.10/2017 /usr/local/sbin/ipportfw -A -t10.1.2.3/2018 -R 192.168.0.10/2018 /usr/local/sbin/ipportfw -A -t10.1.2.3/2019 -R 192.168.0.10/2019 /usr/local/sbin/ipportfw -A -t10.1.2.3/2020 -R 192.168.0.10/2020 -- Îã¤½¤Î 2 -- port=2000 while [ $port -le 2020 ] do /usr/local/sbin/ipportfw -A t10.1.2.3/$port -R 192.168.0.10/$port port=$((port+1)) done -- </verb>  IPCHAINS ¤ò»È¤Ã¤¿ 2.2 ·Ï¥«¡¼¥Í¥ë¤Î¤¿¤á¤ÎÎã¤ò¼¡¤Ë¼¨¤·¤Þ¤¹ -  <verb> ¤³¤³¤ÇÆó¤Ä¤ÎÎã¤ò¤¢¤²¤Æ¤ª¤¤Þ¤·¤¿¡£¤É¤Á¤é¤âÌäÂê¤Ê¤¯Æ°ºî¤·¤Þ¤¹ - Îã¤½¤Î 1 -- /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2000 -R 192.168.0.10 2000 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2001 -R 192.168.0.10 2001 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2002 -R 192.168.0.10 2002 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2003 -R 192.168.0.10 2003 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2004 -R 192.168.0.10 2004 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2005 -R 192.168.0.10 2005 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2006 -R 192.168.0.10 2006 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2007 -R 192.168.0.10 2007 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2008 -R 192.168.0.10 2008 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2009 -R 192.168.0.10 2009 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2010 -R 192.168.0.10 2010 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2011 -R 192.168.0.10 2011 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2012 -R 192.168.0.10 2012 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2013 -R 192.168.0.10 2013 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2014 -R 192.168.0.10 2014 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2015 -R 192.168.0.10 2015 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2016 -R 192.168.0.10 2016 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2017 -R 192.168.0.10 2017 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2018 -R 192.168.0.10 2018 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2019 -R 192.168.0.10 2019 /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 2020 -R 192.168.0.10 2020 -- Îã¤½¤Î 2 -- port=2000 while [ $port -le 2020 ] do /usr/local/sbin/ipmasqadm portfw -a -P tcp -L 10.1.2.3 $port -R 192.168.0.10 $port port=$((port+1)) done -- </verb>  <item>¿·¤·¤¤ rc.firewall ¤¬½àÈ÷¤Ç¤¤¿¤é¡¢"/etc/rc.d/rc.firewall" ¤È¥¿¥¤¥×¤·¤Æ ÀßÄê¤¬ÌäÂê¤Ê¤¤¤³¤È¤ò³ÎÇ§¤¹¤ë¤¿¤á¤Ë¥ë¡¼¥ë¥»¥Ã¥È¤ÎºÆÆÉ¤ß¹þ¤ß¤ò¹Ô¤¤¤Þ¤¹¡£ ¤â¤·²¿¤«¥¨¥é¡¼¤¬½Ð¤¿¾ì¹ç¡¢IPPORTFW ¥µ¥Ý¡¼¥È¤Î¤¢¤ë¥«¡¼¥Í¥ë¤òÆ°ºî¤µ¤»¤Æ¤¤¤Ê¤¤¤«¡¢ rc.firewall ¥Õ¥¡¥¤¥ë¤Ë¤Ê¤Ë¤«¥¿¥¤¥×¥ß¥¹¤¬¤¢¤ë¤³¤È¤Ç¤·¤ç¤¦¡£</item> <item>    ICQ ¤Î [¥×¥ê¥Õ¥¡¥ì¥ó¥¹] - [ÀÜÂ³] ÀßÄê¤Ç "LAN¤«¤é»È¤¦" ¤È "¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Þ¤¿¤Ï¥×¥í¥¥·¤ò·ÐÍ³¤·¤Æ»È¤¦" ¤òÀßÄê¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤ì¤«¤é¡¢ "¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ëÀßÄê" ¤ò¥¯¥ê¥Ã¥¯¤·¤Æ¡¢"SOCKS ¥×¥í¥¥·¤ò »È¤ï¤Ê¤¤" ¤òÀßÄê¤·¤Þ¤¹¡£ °ÊÁ°¤Ï "¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥¿¥¤¥à¥¢¥¦¥È" ¤ò "30" ¤Ë¤¹¤ë¤³¤È¤ò¿ä¾©¤·¤Æ ¤¤¤Þ¤·¤¿¤¬¡¢Â¿¤¯¤ÎÍøÍÑ¼Ô¤Ï¤³¤ì¤Ë¤è¤ê ICQ ¤Î¿®ÍêÀ¤¬²¼¤¬¤ë¤³¤È¤Ë µ¤¤Å¤¤¤Æ¤¤¤ëÅÀ¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ ICQ ¤Ïµ¬Äê¤Î¥¿¥¤¥à¥¢¥¦¥ÈÀßÄê (¤³¤Î ICQ ¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Ê¤¤¾õÂÖ) ¤¬ ºÇ¤â¿®ÍêÀ¤¬¹â¤¤¤Î¤Ç¡¢¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤Ç¤Î¥¿¥¤¥à¥¢¥¦¥È¤ò160ÉÃ¤Ë¤·¤Þ¤¹¡£ ¤³¤Î¥¿¥¤¥à¥¢¥¦¥ÈÀßÄê¤òÊÑ¹¹¤¹¤ëÊýË¡¤Ë¤Ä¤¤¤Æ¤Ï <ref id="rc.firewall-2.0.x"> ¤È <ref id="rc.firewall-2.2.x"> ¥ë¡¼¥ë¥»¥Ã¥È¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤ì¤«¤é¡¢ "¼¡¤Ø" ¤ò¥¯¥ê¥Ã¥¯¤·¤Æ "°Ê²¼¤Î TCP ´Æ»ë¥Ý¡¼¥È¤ò»È¤¦" ¤Î ¹àÌÜ¤Ç¤Ï¡¢ "2000" ¤«¤é "2020" ¤Þ¤Ç¤ò»ØÄê¤·¤Æ¤¯¤À¤µ¤¤¡£¤½¤·¤Æ"´°Î»"¤ò ¥¯¥ê¥Ã¥¯¤·¤Æ½ª¤ï¤ê¤Ç¤¹¡£   ICQ ¥¯¥é¥¤¥¢¥ó¥È¤ÏÊÑ¹¹¤òÍ¸ú¤Ë¤¹¤ë¤¿¤á¤Ë ICQ ¤ÎºÆµ¯Æ°¤òÂ¥¤·¤Æ¤¤Þ¤¹¡£¼Â¤Ï¡¢»ä¤Î ¾ì¹ç¤ÏÊÑ¹¹¤òÀµ¤·¤¯È¿±Ç¤µ¤»¤ÆÆ°¤«¤¹¤¿¤á¤Ë Windows9x ¼«ÂÎ¤òºÆµ¯Æ°¤µ¤»¤Ê¤±¤ì¤Ð¤Ê¤ê ¤Þ¤»¤ó¤Ç¤·¤¿¤¬¡¢¤¢¤ë¿Í¤Ï¤½¤ó¤Ê¤³¤È¤ò¤¹¤ëÉ¬Í×¤Ï¤Ê¤¤¤È¤â¸À¤Ã¤Æ¤¤¤Þ¤¹¡£¤â¤·¤À¤á¤Ê¤éÎ¾Êý »î¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£</item> </itemize>   <item> ¤¢¤ë¿Í¤Ï¥Ý¡¼¥ÈÈÖ¹æ 4000 ¤À¤±¤ò ICQ ¤ÎÆ°¤¤¤Æ¤¤¤ë¥Þ¥·¥ó¤Ë¥Ý¡¼¥ÈÅ¾Á÷¤¹¤ë¤À¤±¤Î ¾õÂÖ¤¬¥Ù¥¹¥È¤À¡¢¤È¤âÏÃ¤·¤Æ¤¯¤ì¤Þ¤·¤¿¡£Èà¤Ï¤³¤ì¤À¤±¤Ç ICQ ¼«ÂÎ¤ÎÀßÄê¤ò´ûÄêÃÍ¤«¤é²¿¤é ÊÑ¹¹¤¹¤ë¤³¤È¤Ê¤¯Á´Éô¤Îµ¡Ç½(¥Á¥ã¥Ã¥È¡¢¥Õ¥¡¥¤¥ëÅ¾Á÷¤Ê¤É)¤¬¤¦¤Þ¤¯Æ°ºî¤·¤¿¤ÈÊó¹ð¤·¤Æ¤¤¤Þ¤¹¡£ ¤ª¤½¤é¤¯¤ä¤êÊý¤Ï¤¿¤¯¤µ¤ó¤¢¤ë¤Î¤Ç¤·¤ç¤¦¤¬¡¢ÊÌ¤ÊÀßÄê¤ÎÊýË¡¤ò»î¤¹¤Î¤â¤¤¤¤¤«¤â¤·¤ì¤Þ¤»¤ó¡£ </itemize> <label id="LooseUDP">   <sect1>¥²¡¼¥Þ¡¼¸þ¤± - LooseUDP ¥Ñ¥Ã¥Á  LooseUDP ¥Ñ¥Ã¥Á¤Ï NAT ¤È¤Î¿ÆÏÂÀ¤¬¤¢¤ê¡¢ÄÌ¾ï UDP ¤òÍÑ¤¤¤ë¥²¡¼¥à¤ò Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤ÎÇØ¸å¤ÇÌäÂê¤Ê¤¯Æ°ºî¤µ¤»¤ë¤¿¤á¤Î¤â¤Î¤Ç¤¹¡£ º£¤Î¤È¤³¤í¡¢LooseUDP ¤Ï¥Ð¡¼¥¸¥ç¥ó 2.0.36 °Ê¾å¤Î¥«¡¼¥Í¥ë¤ËÂÐ¤·¤Æ¤Ï ¥Ñ¥Ã¥Á¤È¤·¤ÆÄó¶¡¤µ¤ì¡¢2.2.3 °Ê¾å¤Î¥«¡¼¥Í¥ë¤Ë¤ÏÁÈ¤ß¹þ¤Þ¤ì¤Æ¤¤¤Þ¤¹¤¬¡¢ 2.2.16 °Ê¾å¤Î¥«¡¼¥Í¥ë¤Ç¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¶Ø»ß¾õÂÖ¤Ë¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£  LooseUDP ¤ò2.0.x ·Ï¥«¡¼¥Í¥ë¤ÇÆ°ºî¤µ¤»¤ë¤Ë¤Ï¼¡¤Î¼ê½ç¤Ë½¾¤¤¤Þ¤¹ - <itemize>  <item>ºÇ¿·¤Î 2.0.x ¥«¡¼¥Í¥ë¤òÍÑ°Õ¤·¡¢/usr/src/linux ¥Ç¥£¥ì¥¯¥È¥ê¤ËÅ¸³«¤·¤Þ¤¹¡£  <item>¥Ð¡¼¥¸¥ç¥ó 2.0.x ¤Ç¤ÏÉ¬¿Ü - IPPORTFW ¥Ñ¥Ã¥Á¤ò¡¢¤³¤Î HOW-TO ¤Î <ref id="2.0.x-Requirements" name="2.0.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤«¡¢¤Þ¤¿¤Ï <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ò»²¹Í¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£  <item><ref id="2.0.x-Requirements" name="2.0.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤«¤é LooseUDP ¥Ñ¥Ã¥Á¤ò¥À¥¦¥ó¥í¡¼¥É¤·¤Þ¤¹¡£  LooseUDP ¥Ñ¥Ã¥Á¤ò /usr/src/linux ¥Ç¥£¥ì¥¯¥È¥ê¤ËÃÖ¤¡¢¼¡¤Î¤è¤¦¤Ë¥¿¥¤¥×¤·¤Þ¤¹¡£  <tscreen>°µ½Ì¤µ¤ì¤¿¥Ñ¥Ã¥Á¥Õ¥¡¥¤¥ë¤Î¾ì¹ç - zcat loose-udp-2.0.36.patch.gz | patch -p1</tscreen>  <tscreen>°µ½Ì¤µ¤ì¤Æ¤¤¤Ê¤¤¥Ñ¥Ã¥Á¥Õ¥¡¥¤¥ë¤Î¾ì¹ç - cat loose-udp-2.0.36.patch | patch -p1</tscreen>  ¤ª»È¤¤¤Î patch ¥×¥í¥°¥é¥à¤Î¥Ð¡¼¥¸¥ç¥ó¤Ë¤â¤è¤ê¤Þ¤¹¤¬¡¢¼¡¤Î¤è¤¦¤Ê¥Æ¥¥¹¥È¤ò ¸«¤ë¤³¤È¤Ë¤Ê¤ë¤Ç¤·¤ç¤¦ - <tscreen> <verb> patching file `CREDITS' patching file `Documentation/Configure.help' patching file `include/net/ip_masq.h' patching file `net/ipv4/Config.in' patching file `net/ipv4/ip_masq.c' </verb> </tscreen>  ¤â¤·¡¢"Hunk FAILED" ¤¬¥Ñ¥Ã¥Á²áÄø¤Î³Æ¡¹¤Ç¤½¤ì¤¾¤ì°ìÅÙ¤À¤±É½¼¨¤µ¤ì¤Æ¤¤¤ë¤Ê¤é¡¢¤½¤ì¤Ï ·Ù¹ð¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó¡£¸Å¤¤¥Ñ¥Ã¥Á¥Õ¥¡¥¤¥ë¤¬Åö¤¿¤Ã¤Æ¤¤¤ë¤Î¤À¤È»×¤ï¤ì¤Þ¤¹¤¬¡¢¤³¤Î¾õÂÖ¤Ç¤¢¤ì¤Ð Æ°ºî¤·¤Þ¤¹¡£Á´¤¯¼ºÇÔ¤Ë½ª¤ï¤Ã¤Æ¤·¤Þ¤Ã¤¿¾ì¹ç¤Ï¡¢IPPORTFW ¥Ñ¥Ã¥Á¤¬¥«¡¼¥Í¥ë¤ËÅ¬ÍÑ¤µ¤ì¤Æ¤¤¤ë ¤«¤É¤¦¤«¡¢¤Þ¤º³ÎÇ§¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£  ¤³¤Î¥Ñ¥Ã¥Á¤¬ÁÈ¤ß¹þ¤Þ¤ì¤ë¤È¡¢ <ref id="Kernel-Compile" name="¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë"> ¤Î¾Ï¤Ë¼¨¤µ¤ì¤Æ¤¤¤ëÄÌ¤ê¤Ë "IP: loose UDP port managing (EXPERIMENTAL) (CONFIG_IP_MASQ_LOOSE_UDP) [Y/n/?]" ¥ª¥×¥·¥ç¥ó ¤ËÂÐ¤·¤Æ "Y" ¤ÈÅú¤¨¤Æ¹½À®¤·¤Æ¤¯¤À¤µ¤¤¡£ </itemize>  2.2 ·Ï¥«¡¼¥Í¥ë¤Ç LooseUDP ¤¬Æ°¤¯¤è¤¦¤Ë¤¹¤ë¤¿¤á¤Ë¤Ï¡¢¼¡¤Î¤è¤¦¤Ê¼ê½ç¤ò¼Â»Ü¤·¤Þ¤¹ - <itemize>  /etc/rc.d/rc.firewall ¥¹¥¯¥ê¥×¥È¤ÎºÇ¸å¤Î¤¢¤¿¤ê¤Ë¤¢¤ë LooseUDP ¤Î¹àÌÜ¤òÃµ¤·¤Þ¤¹¡£ <tt>echo "0" > /proc/sys/net/ipv4/ip_masq_udp_dloose</tt> ¤È¤¤¤¦¹Ô¤Ë¤¢¤ë "0" ¤ò "1" ¤ËÊÑ¹¹¤·¤Æ¡¢ rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤òºÆ¼Â¹Ô¤·¤Þ¤¹¡£ ¤³¤Î¼ÂÎã¤Ï¡¢<ref id="rc.firewall-2.2.x"> ¤È <ref id="stronger-rc.firewall-2.2.x"> ¤Ë¤¢¤ê¤Þ¤¹¡£ </itemize>  ¿·¤·¤¯ LooseUDP ¤¬Í¸ú¤È¤Ê¤Ã¤¿¥«¡¼¥Í¥ë¤òÆ°¤«¤¹¤È¡¢ËØ¤É¤Î NAT ¤È¤Î ¿ÆÏÂÀ¤Î¤¢¤ë¥²¡¼¥à¤¬ÌäÂê¤Ê¤¯Æ°¤¯¤è¤¦¤Ë¤Ê¤ê¤Þ¤¹¡£ ¤¤¤¯¤Ä¤«¤Î¥Ú¡¼¥¸¤Ç¡¢ BattleZone ¤Ê¤É¤È¤¤¤Ã¤¿¥²¡¼¥à¤Ë NAT ¿ÆÏÂÀ¤ò »ý¤¿¤»¤ë¥Ñ¥Ã¥Á¤òÄó¶¡¤¹¤ë web ¥Ú¡¼¥¸¤â¤¢¤ê¤Þ¤¹¡£ ¾ÜºÙ¤Ï<ref id="Game-Clients"> ¤Î¾Ï¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£       <sect>¤è¤¯¤¢¤ë¼ÁÌä (FAQ) <label id="FAQ">  ¤³¤³¤ËºÜ¤»¤ë¤ËÁê±þ¤·¤¤¼ÁÌä¤ò»×¤¤¤Ä¤¤¤¿¤é¡¢<htmlurl url="mailto:dranch@trinnet.net" name="dranch@trinnet.net"> ¤ËÁ÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¼ÁÌä¤È¡¢Å¬ÀÚ¤Ê²óÅú¤ò¡¢Ê¬¤«¤ê¤ä¤¹¤¯½ñ¤¤¤ÆÄº¤±¤ì¤Ð¹¬¤¤¤Ç¤¹¡£ µ¹¤·¤¯¤ª´ê¤¤¤·¤Þ¤¹¡£ <label id="MASQ-supported-Distributions">   <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤ë Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ï¤É¤ì¤Ç¤¹¤«¡©  Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤¬ IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤Ê¤¯¤Æ¤â¿´ÇÛ¤Ï¤¤¤ê¤Þ¤»¤ó¡£¤³¤Î HOWTO ¤ÎÁ°¤ÎÊý¤Ë½ñ¤«¤ì¤Æ¤¤¤ë¤È¤ª¤ê¤Ë¥«¡¼¥Í¥ë¤ÎºÆ¥³¥ó¥Ñ¥¤¥ë¤ò¹Ô¤¦¤À¤±¤Ç¤¹¡£   Ãí°Õ - ¤³¤ÎÉ½¤ËÄÉ²Ã¤Ç¤¤ëÊý¤Ï<htmlurl url="mailto:ambrose@writeme.com" name="ambrose@writeme.com"> ¤Þ¤¿¤Ï <htmlurl url="mailto:dranch@trinnet.net" name="dranch@trinnet.net"> °¸¤Ë¥á¡¼¥ë¤òÁ÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£ <itemize> <item>Caldera < v1.2 : NO - ? <item>Caldera v1.3 : YES - 2.0.35 based <item>Caldera v2.2 : YES - 2.2.5 based <item>Caldera eServer v2.3 : YES - ? based <item>Debian v1.3 : NO - ? <item>Debian v2.0 : NO - ? <item>Debian v2.1 : YES - 2.2.1 based <item>Debian v2.2 : YES - 2.2.15 based <item>DLX Linux v? : ? - ? <item>DOS Linux v? : ? - ? <item>FloppyFW v1.0.2 : ? - ? <item>Hal91 Linux v? : ? - ? <item>Linux Mandrake v5.3 : YES - ? <item>Linux Mandrake v6.0 : YES - 2.2.5 based <item>Linux PPC vR4 : NO - ? <item>Linux Pro v? : ? - ? <item>LinuxWare v? : ? - ? <item>Mandrake v6.0 : YES - ? <item>Mandrake v6.1 : YES - ? <item>Mandrake v7.0 : YES - 2.2.14 <item>Mandrake v7.1 : YES - 2.2.15 <item>Mandrake v7.2 : YES - 2.2.17 <item>MkLinux v? : ? - ? <item>MuLinux v3rl : YES - ? <item>Redhat < v4.x : NO - ? <item>Redhat v5.0 : YES - ? <item>Redhat v5.1 : YES - 2.0.34 based <item>Redhat v5.2 : YES - 2.0.36 based <item>Redhat v6.0 : YES - 2.2.5 based <item>Redhat v6.1 : YES - 2.2.12 based <item>Redhat v6.2 : YES - 2.2.14 based <item>Redhat v7.0 : YES - 2.2.16 based <item>Slackware v3.0 : ? - ? <item>Slackware v3.1 : ? - ? <item>Slackware v3.2 : ? - ? <item>Slackware v3.3 : ? - 2.0.34 based <item>Slackware v3.4 : ? - ? <item>Slackware v3.5 : ? - ? <item>Slackware v3.6 : ? - ? <item>Slackware v3.9 : ? - 2.0.37pre10 based <item>Slackware v4.0 : ? - ? <item>Slackware v7.0 : YES - 2.2.13 based <item>Slackware v7.1 : YES - 2.2.16 based <item>Stampede Linux v? : ? - ? <item>SuSE v5.2 : YES - 2.0.32 base <item>SuSE v5.3 : YES - ? <item>SuSE v6.0 : YES - 2.0.36 based <item>SuSE v6.1 : YES - 2.2.5 based <item>SuSE v6.3 : YES - 2.2.13 based <item>Tomsrbt Linux v? : ? - ? <item>TurboLinux Lite v4.0 : YES - ? <item>TurboLinux v6.0 : YES - 2.2.12 based <item>TriLinux v? : ? - ? <item>Yggdrasil Linux v? : ? - ? </itemize> <label id="FAQ-Hardware">   <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò»È¤¦¤¿¤á¤Î¡¢¥Ï¡¼¥É¥¦¥§¥¢¤ËºÇÄã¸ÂÉ¬Í×¤Ê¾ò·ï¤È À©¸Â»ö¹à¤ò¶µ¤¨¤Æ¤¯¤À¤µ¤¤¡£¤½¤ì¤Ç¤É¤ó¤ÊÀÇ½¤¬½Ð¤Þ¤¹¤«?   16MB ¤Î RAM ¤òÈ÷¤¨¤¿ 486/66 ¤Î¥Ü¥Ã¥¯¥¹¤Ï¡¢ 1.54Mb/s T1 ¤Î¥Í¥Ã¥È¥ï¡¼¥¯¤Ç 100% °Ê¾å¤ÎÆ¯¤¤ò¤·¤Þ¤·¤¿! ¹¹¤Ë¥Þ¥¹¥«¥ì¡¼¥É¤Ï 8MB ¤Î RAM ¤òÈ÷¤¨¤¿ 386SX-16s ¤Î¥Þ¥·¥ó¤Ç¤È¤Æ¤âÎÉ¹¥¤Ë Æ°ºî¤¹¤ë¤³¤È¤¬ÃÎ¤é¤ì¤Æ¤¤¤Þ¤¹¡£ ¤·¤«¤·¡¢Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï 500 ¤ò±Û¤¨¤ë¥Þ¥¹¥«¥ì¡¼¥É¥¨¥ó¥È¥ê¡¼¤Ç ¥¹¥é¥Ã¥·¥ó¥°¤ò»Ï¤á¤Æ¤·¤Þ¤¦¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ ¡ÚÌõÃí: ¥¹¥é¥Ã¥·¥ó¥°: OS ¤¬¼Â¥á¥â¥ê¤È SWAP ¥¹¥Ú¡¼¥¹¤Î´Ö¤Î¥Ç¡¼¥¿¤Î ÆÉ¤ß½ñ¤¤ËËØ¤É¤Î»þ´Ö¤òÈñ¤·¤Æ¡¢¥×¥í¥°¥é¥à¤¬¼Â¹Ô¤Ç¤¤Ê¤¯¤Ê¤ë¾õ¶·¤ò¸À¤¤¤Þ¤¹¡£¡Û   »ä¤¬ÃÎ¤ë Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò°ì»þÅª¤Ë²õ¤¹¤³¤È¤¬¤Ç¤¤ëÍ£°ì¤Î ¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤Ï¡¢ GameSpy ¤Ç¤¹¡£ ¤Ê¤¼¤«¤È¤¤¤¦¤È¡¢ GameSpy ¤Ï»È¤Ã¤Æ¤¤¤ë¥ê¥¹¥È¤ò¥ê¥Õ¥ì¥Ã¥·¥å¤¹¤ë¤¿¤á¤Ë Èó¾ï¤ËÃ»»þ´Ö¤Ë 10,000 ¤â¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³¤ò¹Ô¤¤¤Þ¤¹¡£ ¤³¤Î¥»¥Ã¥·¥ç¥ó¤Î¥¿¥¤¥à¥¢¥¦¥ÈËø¥Þ¥¹¥«¥ì¡¼¥É¡¦¥Æ¡¼¥Ö¥ë¤Ï°ìÇÕ¤Ë ¤Ê¤Ã¤Æ¤·¤Þ¤¤¤Þ¤¹¡£ ¾ÜºÙ¤Ï FAQ ¤Î <ref id="No-Free-Ports"> ¤Î¤È¤³¤í¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£  ¤½¤ì°Ê³°¤Ë¤â¡¢  Linus ¤¬´ÉÍý¤·¤Æ¤¤¤ë Linux ¥«¡¼¥Í¥ë¤Ç¤Ï TCP ¤È UDP ³Æ¡¹¤ËÂÐ¤·¤Æ 4096 ¤Î Æ±»þÀÜÂ³¿ô¤ÎÀ©¸Â¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤ÎÀ©¸Â¤Ï¡¢¥«¡¼¥Í¥ë¥½¡¼¥¹¤ÎÃæ¤ÎÃÍ¤ò¤Á¤ç¤Ã¤È¤¤¤¸¤ë¤À¤±¤Ç´ÊÃ±¤ËÊÑ¤¨¤ë¤³¤È¤¬ ¤Ç¤¤Þ¤¹¡£ 2.2.x ¥«¡¼¥Í¥ë¤Î¾ì¹ç¤Ï /usr/src/linux/include/net/ip_masq.h ¤ò¡¢ 2.0.x ¥«¡¼¥Í¥ë¤Î¾ì¹ç¤Ï /usr/src/linux/net/ipv4/ip_masq.h ¤ò ÊÔ½¸¤·¤Þ¤¹¡£ ¤É¤ó¤Ê¤ËË»¤·¤¤¥µ¡¼¥Ð¡¼¤Ç¤âÀµ¤·¤¤¥Õ¥¡¥¤¥ë¤ÎÃæ¤ÎÀ©¸ÂÃÍ¤òºÇÂç 32000 Ëø Áý¤ä¤»¤ÐÂç¾æÉ×¤Ç¤·¤ç¤¦¡£ ¤³¤Î¿ô¤òÊÑ¹¹¤·¤¿¤¤¾ì¹ç¤Ï¡¢ PORT_MASQ_BEGIN & PORT_MASQ_END ¤ÎÃÍ¤ò 32K ¤«¤é 64K Ëø¤ÎÅ¬ÀÚ¤ÊÈÏ°ÏÆâ¤ËÊÑ¹¹¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤³¤ËÎã¤ò¼¨¤·¤Þ¤¹ - <verb> PORT_MASQ_BEGIN=32000 PORT_MASQ_END=64000 </verb>   <sect1>rc.firewall ¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤·¤¿¤é¡Ö¥³¥Þ¥ó¥É¤¬¸«¤Ä¤«¤ê¤Þ¤»¤ó¡× (command not found) ¤È¤¤¤¦¥¨¥é¡¼¤¬È¯À¸¤·¤Þ¤·¤¿¡£¤Ê¤¼¤Ç¤·¤ç¤¦?  ¤É¤Î¤è¤¦¤Ë rc.firewall ¤òºî¤ê¤Þ¤·¤¿¤«? TELNET ¥¦¥¤¥ó¥É¥¦Æâ¤Ë¥«¥Ã¥È¥¢¥ó¥É¥Ú¡¼¥¹¥È¤ò¤·¤Þ¤·¤¿¤«? °¿¤Ï Windows/DOS ¥Þ¥·¥ó¤«¤é FTP ¤ò¤·¤Þ¤·¤¿¤«? ¼¡¤Î¤³¤È¤ò»î¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤.. Linux ¥Ü¥Ã¥¯¥¹¤Ë¥í¥°¥¤¥ó¤·¡¢ "vim -b /etc/rc.d/rc.firewall" ¤ò¼Â¹Ô¤·¤Æ¤ß¤Æ ¤¯¤À¤µ¤¤¡£ ¤½¤·¤Æ¡¢É½¼¨¤µ¤ì¤¿¹Ô¤¬¤¹¤Ù¤Æ ^M ¤Ç½ª¤ï¤Ã¤Æ¤¤¤ë¤«¤É¤¦¤«¸«¤Æ¤¯¤À¤µ¤¤¡£ ¤â¤·¤½¤¦¤Ê¤é ^M ¤òÁ´¤Æºï½ü¤·¤Æ¡¢¤â¤¦°ìÅÙ¤ä¤Ã¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£   <sect1> ÀßÄê¤òÁ´¤Æ¥Á¥§¥Ã¥¯¤·¤Þ¤·¤¿¤¬¡¢Ì¤¤À IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÆ°ºî¤µ¤»¤ë ¤³¤È¤¬¤Ç¤¤Þ¤»¤ó¡£¤É¤¦¤·¤¿¤é¤è¤¤¤Ç¤·¤ç¤¦¤«? <itemize>   <item>¤Þ¤¢Íî¤ÁÃå¤¤¤Æ¤¯¤À¤µ¤¤¡£ ¤ªÃã¤Ç¤â¥³¡¼¥Ò¡¼¤Ç¤â¥½¡¼¥À¤Ç¤â°û¤ó¤Ç°ìÂ©¤Ä¤¤¤Æ¤¯¤À¤µ¤¤¡£ µ¤»ý¤Á¤¬Íî¤ÁÃå¤¤¤¿¤é¡¢°Ê²¼¤Ëµ¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò¤ä¤Ã¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÏÆñ¤·¤¯¤Ï¤Ê¤¤¤Î¤Ç¤¹¤¬¡¢¤¢¤Ê¤¿¤Ë¤È¤Ã¤Æ½é¤á¤Æ¤Î ³µÇ°¤¬´ö¤Ä¤«¤¢¤ê¤Þ¤¹¡£  <item>¤â¤¦°ìÅÙ <ref id="Testing" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥Æ¥¹¥È"> ¤Î¾Ï¤ÎÃæ¤Ë¤¢¤ëÁ´¤Æ¤Î¥¹¥Æ¥Ã¥×¤ò¤ä¤Ã¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ÌäÂê¤òÊú¤¨¤Æ¤¤¤ë½é¤á¤Æ¤Î¥Þ¥¹¥«¥ì¡¼¥É¡¦¥æ¡¼¥¶¤Î 99% ¤Ï¤³¤³¤ò¸«¤Æ¤¤¤Þ¤»¤ó¡£  <item><url url="http://www.indyramp.com/lists/masq/" name="IP Masquerade Mailing List Archives"> ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£¶²¤é¤¯¡¢¤¢¤Ê¤¿¤Î¼ÁÌä¤äÌäÂê¤Ï¶¦ÄÌ¤Î¤â¤Î¤Ç¡¢Ã±½ã¤Ê¥¢¡¼¥«¥¤¥ÖÃµº÷¤Ç¸«¤Ä¤±¤ë¤³¤È¤¬¤Ç¤¤ë¤Ç¤·¤ç¤¦¡£  <item><url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS"> ¤ÎÊ¸½ñ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£¤½¤ì¤Ï¡¢¥«¡¼¥Í¥ë 2.0.x ¤È 2.2.x ¤ÎÎ¾Êý¤Ç¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É¤È PPPd¡¢DialD¡¢DHCP¡¢DNS¡¢sendmail ¤Ê¤É¡¢¤¿¤¯¤µ¤ó¤Î¥È¥Ô¥Ã¥¯¥¹¤ò¥«¥Ð¡¼¤·¤Æ¤¤¤Þ¤¹¡£  <item>ROUTED ¤Þ¤¿¤Ï GATED ¤òÁö¤é¤»¤Æ¤¤¤Ê¤¤¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ ³Î¤«¤á¤ë¤Ë¤Ï "ps aux | grep -e routed -e gated" ¤òÁö¤é¤»¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£   <item> IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ø¼ÁÌä¤òÅê¹Æ¤·¤Æ¤¯¤À¤µ¤¤ (¾Ü¤·¤¯¤Ï¤³¤Î¾Ï¤Î¼¡¤Î¹àÌÜ¤ò»²¾È)¡£ ¤Ç¤â¤³¤ì¤Ï¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Î¥¢¡¼¥«¥¤¥Ö¤«¤éÅú¤¨¤ò¸«¤Ä¤±¤é¤ì¤Ê¤«¤Ã¤¿¾ì¹ç¤À¤±¤Ë ¤·¤Æ¤¯¤À¤µ¤¤¡£ ¼ÁÌä¤ÎÃæ¤Ë <ref id="Testing" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥Æ¥¹¥È"> ¤Î¾Ï¤ÎÃæ¤ÇÍ×µá¤µ¤ì¤Æ¤¤¤ëÁ´¤Æ¤Î¾ðÊó¤ò´Þ¤á¤Æ¤¯¤À¤µ¤¤¡£  <item>´ØÏ¢¤¹¤ë Linux NNTP ¥Ë¥å¡¼¥¹¥°¥ë¡¼¥×¤Ø¼ÁÌä¤òÅê¹Æ¤·¤Æ¤¯¤À¤µ¤¤¡£  <item> <htmlurl url="mailto:ambrose@writeme.com" name="ambrose@writeme.com"> ¤È <htmlurl url="mailto:dranch@trinnet.net" name="dranch@trinnet.net"> °¸¤Ë¥á¡¼¥ë¤òÁ÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£»ä¤¿¤Á¤«¤é¤è¤ê IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤«¤éÊÖ»ö¤ò¤â¤é¤¦µ¡²ñ¤Î¤Û¤¦¤¬Â¿¤¤¤Ç¤·¤ç¤¦¡£  <item>¤¢¤Ê¤¿¤ÎÀßÄê¤ò¤â¤¦°ìÅÙ¥Á¥§¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£:-) </itemize> <label id="Masq-List">   <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤ä IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦³«È¯¼Ô ¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë»²²Ã¤·¤¿¤ê¡¢¤½¤Î¥¢¡¼¥«¥¤¥Ö¤ò¸«¤ë¤Ë¤Ï¤É¤¦¤¹¤ì¤ÐÎÉ¤¤¤Ç¤¹¤«?  2 ¤Ä¤¢¤ë Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë»²²Ã¤¹¤ë¤Ë¤Ï 2 ¤Ä¤Î ÊýË¡¤¬¤¢¤ê¤Þ¤¹¡£ Âè 1 ¤ÎÊýË¡¤Ï <htmlurl url="mailto:masq-request@indyramp.com" name="masq-request@indyramp.com"> ¤Ë¥á¡¼¥ë¤òÁ÷¤ë¤³¤È¤Ç¤¹¡£ Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦³«È¯¼Ô¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë»²²Ã¤¹¤ë¤¿¤á¤Ë¤Ï <htmlurl url="mailto:masq-dev-request@indyramp.com" name="masq-dev-request@indyramp.com"> ¤Ë¥á¡¼¥ë¤òÁ÷¤ê¤Þ¤¹¡£ ¾ÜºÙ¤Ï²¼¤Îµ½Ò¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ <itemize>   <item>¥á¡¼¥ë¤Ç¤Î¿½¤·¹þ¤ß - ¥á¡¼¥ë¥á¥Ã¥»¡¼¥¸¤Î·ïÌ¾¤Þ¤¿¤ÏËÜÊ¸¤Î¤É¤Á¤é¤«¤ÎÃæ¤Ë "subscribe" ¤È¤¤¤¦Ã±¸ì¤ò½ñ¤¤¤Æ¤¯¤À¤µ¤¤¡£ ¤â¤· IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤¢¤ë¤¤¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦³«È¯¼Ô ¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Î¥À¥¤¥¸¥§¥¹¥ÈÈÇ¤Î¤ß¤Î¿½¤·¹þ¤ß¤ò¤·¤¿¤¤¤Î¤Ê¤é¡¢ ¥á¡¼¥ë¥á¥Ã¥»¡¼¥¸¤Î·ïÌ¾¤¢¤ë¤¤¤ÏËÜÊ¸¤ÎÃæ¤Ë "subscribe digest" ¤È¤¤¤¦Ã±¸ì¤ò ½ñ¤¤¤Æ¤¯¤À¤µ¤¤ (¤½¤Î½µ¤Î¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¾å¤Î¥á¡¼¥ë¤ÎÁ´¤Æ¤¬Âç¤¤Ê 1 ¤Ä¤Î¥á¡¼¥ë¤Ë¤Ê¤Ã¤ÆÁ÷¤é¤ì¤Þ¤¹)¡£   ¥µ¡¼¥Ð¤¬¤¢¤Ê¤¿¤Î¥ê¥¯¥¨¥¹¥È¤ò¼õ¤±¼è¤ì¤Ð¡¢¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤ËÅÐÏ¿¤·¡¢ ¥Ñ¥¹¥ï¡¼¥É¤¬Á÷¤é¤ì¤Æ¤¤Þ¤¹¡£ ¤³¤Î¥Ñ¥¹¥ï¡¼¥É¤òÊÝÂ¸¤·¤Æ¤ª¤¤¤Æ¤¯¤À¤µ¤¤¡£ ¸å¤Ç¥ê¥¹¥È¤«¤éÅÐÏ¿¤ò¼è¤ê¾Ã¤·¤¿¤ê¡¢¥ª¥×¥·¥ç¥ó¤òÊÑ¹¹¤¹¤ë¤¿¤á¤ËÉ¬Í×¤Ç¤¹¡£ </itemize>   Âè 2 ¤ÎÊýË¡¤Ï¡¢ WWW ¥Ö¥é¥¦¥¶¤ò»È¤¤¤Þ¤¹¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë»²²Ã¤·¤¿¤¤¾ì¹ç¤Ï <htmlurl url="http://www.indyramp.com/masq-list/" name="http://www.indyramp.com/masq-list/"> ¤Ë¤¢¤ë¥Õ¥©¡¼¥à¤ò¥¢¥¯¥»¥¹¤·¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦³«È¯¼Ô¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë»²²Ã¤·¤¿¤±¤ì¤Ð <htmlurl url="http://www.indyramp.com/masq-dev-list/" name="http://www.indyramp.com/masq-dev-list/"> ¤Ë¤¢¤ë¥Õ¥©¡¼¥à¤Ë ¥¢¥¯¥»¥¹¤·¤Æ¡¢¿½¤·¹þ¤ß¤ò¤·¤Þ¤¹¡£  Í½Ìó¤¹¤ë¤ÈÍ½Ìó¤µ¤ì¤¿¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤«¤é¥á¡¼¥ë¤¬Íè¤Þ¤¹¡£Í½Ìó¤·¤¿¥æ¡¼¥¶¤âÍ½Ìó¤·¤Æ¤¤¤Ê¤¤¥æ¡¼¥¶¤â 2 ¤Ä¤Î¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Î¥¢¡¼¥«¥¤¥Ö¤Ë¤Ï¥¢¥¯¥»¥¹¤¹¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£Í½Ìó¤Î¤¿¤á¤Î¾Ü¤·¤¤ÀâÌÀ¤Ï¡¢¾åµ 2 ¤Ä¤Î WWW URL ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£   ºÇ¸å¤Ë¤Ê¤ê¤Þ¤¹¤¬¡¢ºÇ½é¤ËÍ½Ìó¤·¤¿¥¢¥«¥¦¥ó¥È/¥¢¥É¥ì¥¹¤«¤é¤·¤« IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤ËÅê¹Æ¤Ç¤¤Ê¤¤¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£  ¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤¢¤ë¤¤¤Ï¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¡¦¥¢¡¼¥«¥¤¥Ö¤Ë´Ø¤·¤Æ²¿¤é¤«¤ÎÌäÂê¤¬¤¢¤ì¤Ð <htmlurl url="mailto:masq-owner@indyramp.com" name="Robert Novak"> ¤ËÏ¢Íí¤·¤Æ¤¯¤À¤µ¤¤¡£ <label id="what-is-masq">   <sect1>IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¡¢¥×¥í¥¥·¤ä NAT ¥µ¡¼¥Ó¥¹¤È¤É¤¦°ã¤¦¤Î¤Ç¤·¤ç¤¦¤«? <![ %codes CDATA [ <verb>  ¥×¥í¥¥· - ¥×¥í¥¥·¡¦¥µ¡¼¥Ð¡¼¤Ï¼¡¤Î¤â¤Î¤ÇÍøÍÑ²ÄÇ½¤Ç¤¹ - Win95, NT, Linux, Solaris ¤Ê¤É¡£ ¥×¥í¥¥· - ¥×¥í¥¥·¥µ¡¼¥Ð¤Ï¼¡¤Î¤â¤Î¤ÇÍøÍÑ²ÄÇ½¤Ç¤¹ - Win95, NT, Linux, Solaris¤Ê¤É¡£ Ä¹½ê - + 1 IP ¥¢¥É¥ì¥¹: °Â²Á + ÀÇ½¸þ¾å¤Î¤¿¤á¤Ë¥¥ã¥Ã¥·¥ó¥°¡¦¥ª¥×¥·¥ç¥ó¤¬¤¢¤ë¡£ (www Â¾) Ã»½ê - - ¥×¥í¥¥·¥µ¡¼¥Ð¤Ë·Ò¤¬¤ë¥¯¥é¥¤¥¢¥ó¥È¤Î ¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤Ï¥×¥í¥¥·¡¦¥µ¡¼¥Ó¥¹ (SOCKS) ¤ò ¥µ¥Ý¡¼¥È¤·¡¢³î¤Ä¥×¥í¥¥·¥µ¡¼¥Ð¤ò»È¤¦¤è¤¦¤ËÀßÄê ¤·¤Ê¤±¤ì¤Ð¤Ê¤é¤Ê¤¤¡£ - WWW ¤Î¥«¥¦¥ó¥¿¤ÈÅý·×¾ðÊó¤¬¶¸¤Ã¤Æ¤·¤Þ¤¤¤Þ¤¹¡£  ¥×¥í¥¥·¡¦¥µ¡¼¥Ð¡¼¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¤è¤¦¤Ë¤¿¤À 1 ¤Ä¤Î¥°¥í¡¼¥Ð¥ë IP ¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤·¡¢¥×¥é¥¤¥Ù¡¼¥È LAN ¾å¤Î¥¯¥é¥¤¥¢¥ó¥È (WWW ¥Ö¥é¥¦¥¶¡¼¤Ê¤É) ¤Ø¤ÎËÝÌõ¼Ô¤È¤·¤ÆÆ¯¤¤Þ¤¹¡£¤³¤Î¥×¥í¥¥·¡¦¥µ¡¼¥Ð¡¼¤Ï¡¢1 ¤Ä¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹ ¤Ë¤Ä¤Ê¤¬¤ë¥×¥é¥¤¥Ù¡¼¥È¥Í¥Ã¥È¥ï¡¼¥¯¤«¤é TELNET¡¢FTP¡¢WWW ¤Ê¤É¤Î¤è¤¦¤Ê¥ê¥¯¥¨ ¥¹¥È¤ò¼õ¤±¼è¤ê¤Þ¤¹¡£¤½¤·¤Æ¤¢¤¿¤«¤â¥í¡¼¥«¥ë¤ÎÈ¢¤Î¾å¤ÎÃ¯¤«¤¬Í×µá¤·¤Æ¤¤¤ë¤« ¤Î¤è¤¦¤Ë¡¢½çÈÖ¤Ë¡¢¤³¤ì¤é¤Î¥ê¥¯¥¨¥¹¥È¤ò³°Éô¤ËÁ÷¿®¤·¤Þ¤¹¡£±ó³Ö¤Î¥¤¥ó¥¿¡¼¥Í¥Ã ¥È¥µ¡¼¥Ð¡¼¤¬Í×µá¤µ¤ì¤¿¾ðÊó¤òÁ÷¤êÊÖ¤·¤Æ¤¯¤ë¤È¡¢¤³¤ó¤É¤ÏÆâÉô¥¯¥é¥¤¥¢¥ó¥È¤ËºÆ ÅÙ TCP/IP ¥¢¥É¥ì¥¹¤òËÝÌõ¤·¡¢¥È¥é¥Õ¥£¥Ã¥¯¤òÁ÷¤ê¤Þ¤¹¡£¤³¤Î¤¿¤á¡¢¤½¤ì¤Ï¥×¥í¥ ¥·¡¦¥µ¡¼¥Ð¡¼¡ÊÂåÍý¥µ¡¼¥Ð¡¼¡Ë¤È¸Æ¤Ð¤ì¤Þ¤¹¡£ ¥×¥í¥¥·¥µ¡¼¥Ð¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÈÆ±ÍÍ¤Ë¡¢ 1 ¤Ä¤Î¥°¥í¡¼¥Ð¥ë IP ¥¢¥É¥ì¥¹¤Î¤ß»ÈÍÑ¤·¡¢¥×¥é¥¤¥Ù¡¼¥È LAN ¾å¤Î¥¯¥é¥¤¥¢¥ó¥È (WWW ¥Ö¥é¥¦¥¶ Åù) ¤Ø¤ÎËÝÌõµ¡¤È¤·¤ÆÆ°ºî¤·¤Þ¤¹¡£ ¤³¤Î¥×¥í¥¥·¥µ¡¼¥Ð¤Ï¡¢1 ¤Ä¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Ë·Ò¤¬¤ë¥×¥é¥¤¥Ù¡¼¥È ¥Í¥Ã¥È¥ï¡¼¥¯¤«¤é TELNET, FTP, WWW Åù¤Î¤è¤¦¤ÊÀÜÂ³Í×µá¤ò¼õ¤±¼è¤ê¤Þ¤¹¡£ ¤½¤·¤Æ¡¢¤¢¤¿¤«¤â¥í¡¼¥«¥ë¥Ü¥Ã¥¯¥¹¾å¤ÎÃ¯¤«¤¬ÀÜÂ³Í×µá¤òÈ¯¤·¤Æ¤¤¤ë¤«¤Î ¤è¤¦¤Ë¡¢½çÈÖ¤Ë¤³¤ì¤é¤Î¥ê¥¯¥¨¥¹¥È¤ò³°Éô¤ËÁ÷¿®¤·¤Þ¤¹¡£ ±ó³Ö¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥µ¡¼¥Ð¤¬Í×µá¤µ¤ì¤¿¾ðÊó¤òÁ÷¤êÊÖ¤·¤Æ¤¯¤ë¤È¡¢ º£ÅÙ¤ÏÆâÉô¥¯¥é¥¤¥¢¥ó¥È¤ËºÆÅÙ TCP/IP ¥¢¥É¥ì¥¹¤òËÝÌõ¤·¡¢¥È¥é¥Õ¥£¥Ã¥¯¤ò Á÷¤ê¤Þ¤¹¡£ ¤³¤Î¤¿¤á¡¢¤½¤ì¤Ï¥×¥í¥¥·¥µ¡¼¥Ð¡ÚÌõÃí: ÂåÍý¥µ¡¼¥Ð¡Û¤È¸Æ¤Ð¤ì¤Þ¤¹¡£  Ãí°Õ - ¤¢¤é¤æ¤ë¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤â¡¢¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î¥Þ¥·¥ó¤Ç »È¤¤¤¿¤¤¾ì¹ç¤Ï¡¢ Netscape ¤ä´ö¤Ä¤«¤ÎÍ¥½¨¤Ê TELNET ¤ä FTP ¥¯¥é¥¤¥¢¥ó¥È¤Î¤è¤¦¤Ë¡¢¥×¥í¥¥·¥µ¡¼¥Ð¤Î¥µ¥Ý¡¼¥È¤¬ ¤µ¤ì¤Æ¤¤¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ ¥×¥í¥¥·¥µ¡¼¥Ð¤Î¥µ¥Ý¡¼¥È¤¬¤µ¤ì¤Æ¤¤¤Ê¤¤¥¯¥é¥¤¥¢¥ó¥È ¥×¥í¥°¥é¥à¤ÏÆ°ºî¤·¤Þ¤»¤ó¡£  ¥×¥í¥¥·¡¦¥µ¡¼¥Ð¡¼¤Î¤â¤¦¤Ò¤È¤Ä¤ÎÍøÅÀ¤È¤·¤Æ¡¢¤¤¤¯¤Ä¤«¤Î¥×¥í¥¥·¡¦¥µ¡¼¥Ð¡¼ ¤Ï¥¥ã¥Ã¥·¥ó¥°¤¬¤Ç¤¤ë¤³¤È¤Ç¤¹ (Squid for WWW) ¡£ Îã¤¨¤Ð 50 Âæ¤Î¥×¥í¥¥· ¤µ¤ì¤¿ PC ¤¬¤¢¤Ã¤Æ¡¢¤½¤ì¤¬Æ±»þ¤Ë Netscape ¤òµ¯Æ°¤·¤¿¤ÈÁÛÁü¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤ì¤é¤¬¥Ç¥Õ¥©¥ë¥È¤Î¥Û¡¼¥à¥Ú¡¼¥¸ URL ¤Î¤Þ¤Þ¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤Æ¤¤¤¿¤Ê¤é¡¢ Æ±¤¸¥Í¥Ã¥È¥¹¥±¡¼¥× WWW ¥Ú¡¼¥¸¤¬¤½¤ì¤¾¤ì¤Î¸Ä¡¹¤Î¥³¥ó¥Ô¥å¡¼¥¿¤ËÊÌ¡¹¤Ë 50 ²ó WAN ¥ê¥ó¥¯¤ò²ð¤·¤ÆÁ÷¤é¤ì¤ë¤³¤È¤Ë¤Ê¤ê¤Þ¤¹¡£¥¥ã¥Ã¥·¥å¤ò»ý¤Ã¤¿¥×¥í¥¥·¡¦ ¥µ¡¼¥Ð¡¼¤Ç¤Ï 1 ²ó¤À¤±¤¬¥×¥í¥¥·¡¦¥µ¡¼¥Ð¡¼¤Ë¤è¤Ã¤Æ¥À¥¦¥ó¥í¡¼¥É¤µ¤ì¡¢¥×¥í¥¥· ¤µ¤ì¤¿¥Þ¥·¥ó¤Ï¥×¥í¥¥·Æâ¤Î¥¥ã¥Ã¥·¥å¤«¤é WWW ¥Ú¡¼¥¸¤ò¼õ¤±¼è¤ê¤Þ¤¹¡£¤³¤ì¤Ï ¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³Ãæ¤ÎÂÓ°èÉý¤òÀáÌó¤¹¤ë¤À¤±¤Ç¤Ê¤¯¡¢¥×¥í¥¥·¤µ¤ì¤¿¥Þ¥·¥ó¤Ë ¤È¤Ã¤ÆÈó¾ï¤ËÁá¤¤±þÅúÂ®ÅÙ¤Ë¤Ê¤ê¤Þ¤¹¡£ ¥×¥í¥¥·¥µ¡¼¥Ð¤Î¤â¤¦°ì¤Ä¤ÎÍøÅÀ¤È¤·¤Æ¡¢¥×¥í¥¥·¥µ¡¼¥Ð¤ÎÃæ¤Ë¤Ï ¥¥ã¥Ã¥·¥ó¥°¤Î¤Ç¤¤ë¤â¤Î¤â¤¢¤ë¤³¤È¤Ç¤¹ (Squid for WWW) ¡£ Îã¤¨¤Ð 50 Âæ¤Î¥×¥í¥¥·¤µ¤ì¤¿ PC ¤¬¤¢¤Ã¤Æ¡¢¤½¤ì¤é¤¬Æ±»þ¤Ë Netscape ¤òµ¯Æ°¤·¤¿¤ÈÁÛÁü¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤ì¤é¤¬¥Ç¥Õ¥©¥ë¥È¤Î¥Û¡¼¥à¥Ú¡¼¥¸ URL ¤Î¤Þ¤Þ¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤Æ ¤¤¤¿¤Ê¤é¡¢Æ±¤¸ Netscape WWW ¥Ú¡¼¥¸¤¬³Æ¡¹¤Î¸Ä¡¹¤Î¥³¥ó¥Ô¥å¡¼¥¿¤Ë ÊÌ¡¹¤Ë 50 ²ó WAN ¥ê¥ó¥¯¤ò²ð¤·¤ÆÁ÷¤é¤ì¤ë¤³¤È¤Ë¤Ê¤ê¤Þ¤¹¡£ ¥¥ã¥Ã¥·¥å¤ò»ý¤Ã¤¿¥×¥í¥¥·¥µ¡¼¥Ð¤Ç¤Ï¡¢ 1 ²ó¤À¤±¤¬¥×¥í¥¥·¥µ¡¼¥Ð ¤Ë¤è¤Ã¤Æ¥À¥¦¥ó¥í¡¼¥É¤µ¤ì¡¢¥×¥í¥¥·¤µ¤ì¤¿¥Þ¥·¥ó¤Ï¥×¥í¥¥·Æâ¤Î ¥¥ã¥Ã¥·¥å¤«¤é WWW ¥Ú¡¼¥¸¤ò¼õ¤±¼è¤ê¤Þ¤¹¡£ ¤³¤ì¤Ï¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³Ãæ¤ÎÂÓ°èÉý¤òÀáÌó¤¹¤ë¤À¤±¤Ç¤Ê¤¯¡¢ ¥×¥í¥¥·¤µ¤ì¤¿¥Þ¥·¥ó¤Ë¤È¤Ã¤ÆÈó¾ï¤ËÁá¤¤±þÅúÂ®ÅÙ¤Ë¤Ê¤ê¤Þ¤¹¡£  IP ¥Þ¥¹¥«¥ì¡¼¥É¤ä 1ÂÐÂ¿ IP ¤Î NAT ¤Ï¡¢¥µ¡¼¥Ð¤¬ IP ¥¢¥É¥ì¥¹ËÝÌõ¤ò ¹Ô¤¤¡¢ÆâÉô¥Þ¥·¥ó¤ËÂå¤ï¤Ã¤Æ¤¢¤¿¤«¤â¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤¬ÀÜÂ³Í×µá¤ò È¯À¸¤·¤Æ¤¤¤ë¤«¤Î¤è¤¦¤Ë¡¢±ó³Ö¤Î¥µ¡¼¥Ð (Îã¤¨¤Ð WWW ¥µ¡¼¥Ð) ¤Ë Á÷¤ê½Ð¤¹¤È¤¤¤¦°ÕÌ£¤Ç¡¢¥×¥í¥¥·¥µ¡¼¥Ð¤Ë»÷¤Æ¤¤¤Þ¤¹¡£  IP ¥Þ¥¹¥«¥ì¡¼¥É¤È¥×¥í¥¥·¡¦¥µ¡¼¥Ð¡¼¤Î¼ç¤Ê°ã¤¤¤Ï¡¢¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¡¼¥Ð¡¼ ¤Ï¥¯¥é¥¤¥¢¥ó¥È¡¦¥Þ¥·¥ó¤ÎÀßÄêÊÑ¹¹¤ò¤Þ¤Ã¤¿¤¯É¬Í×¤È¤·¤Ê¤¤¤È¤¤¤¦¤³¤È¤Ç¤¹¡£ ¥¯¥é¥¤¥¢¥ó¥È¤Î¥Ç¥Õ¥©¥ë¥È¥²¡¼¥È¥¦¥§¥¤¤È¤·¤Æ Linux ¥Ü¥Ã¥¯¥¹¤ò»È¤¦¤è¤¦¤ËÀß Äê¤µ¤¨¤¹¤ì¤Ð¡¢ÌäÂê¤Ê¤¯Æ¯¤¤Þ¤¹¡£¤¿¤À RealAudio, FTP ¤Ê¤É¤ò»È¤¦¤Ë¤Ï¤½¤ì¤é¤Î ÆÃÊÌ¤Ê Linux ¥â¥¸¥å¡¼¥ë¤ò¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¤È¥×¥í¥¥·¥µ¡¼¥Ð¤Î¼ç¤Ê°ã¤¤¤Ï¡¢¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤Ï ¥¯¥é¥¤¥¢¥ó¥È¥Þ¥·¥ó¤ÎÀßÄêÊÑ¹¹¤òÁ´¤¯É¬Í×¤È¤·¤Ê¤¤¤È¤¤¤¦¤³¤È¤Ç¤¹¡£ ¥¯¥é¥¤¥¢¥ó¥È¤Î¥Ç¥Õ¥©¥ë¥È¥²¡¼¥È¥¦¥§¥¤¤È¤·¤Æ Linux ¥Ü¥Ã¥¯¥¹¤ò»È¤¦¤è¤¦¤Ë ÀßÄê¤µ¤¨¤¹¤ì¤Ð¡¢ÌäÂê¤Ê¤¯Æ¯¤¤Þ¤¹¡£ ¤¿¤À RealAudio, FTP Åù¤ò»È¤¦¤Ë¤Ï¡¢¤½¤ì¤é¤ÎÆÃÊÌ¤Ê Linux ¥â¥¸¥å¡¼¥ë¤ò ¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£  ¤µ¤é¤Ë¡¢Â¿¤¯¤Î¿Í¡¹¤Ï TELNET¡¢FTP ¤Ê¤É¤Î¤¿¤á¤Ë IP ¥Þ¥¹¥«¥ì¡¼¥É ¤ò»ÈÍÑ¤· ¤Þ¤¹¡£¤½¤ì¤Ë²Ã¤¨¤µ¤é¤Ë www ¤Î¥È¥é¥Õ¥£¥Ã¥¯¤ÎÀÇ½¤ò¾å¤²¤ë¤¿¤á¤ËÆ±¤¸ Linux ¥Ü¥Ã¥¯¥¹¤ÎÃæ¤Ë¥¥ã¥Ã¥å¤òÍø¤«¤»¤¿¥×¥í¥¥·¤òÀßÄê¤·¤Þ¤¹¡£ ¹¹¤Ë¡¢Â¿¤¯¤Î¿Í¡¹¤Ï TELNET, FTP Åù¤Î°Ù¤Ë IP ¥Þ¥¹¥«¥ì¡¼¥É ¤ò »ÈÍÑ¤·¤Þ¤¹¡£ ¤½¤ì¤Ë²Ã¤¨¤Æ¡¢¹¹¤Ë www ¤Î¥È¥é¥Õ¥£¥Ã¥¯¤ÎÀÇ½¤ò¾å¤²¤ë°Ù¤Ë¡¢Æ±¤¸ Linux ¥Ü¥Ã¥¯¥¹¤ÎÃæ¤Ë¥¥ã¥Ã¥å¤òÍø¤«¤»¤¿¥×¥í¥¥·¤òÀßÄê¤·¤Þ¤¹¡£  NAT - NAT ¥µ¡¼¥Ð¤Ï Windows 95/NT, Linux, Solaris ¤ä¹âµé¤Ê ISDN¥ë¡¼¥¿¤Ç ÍøÍÑ²ÄÇ½¤Ç¤¹¡£(Ascend ¼ÒÀ½¤Î¤â¤Î¤ò½ü¤¯) Ä¹½ê - + ÀßÄê¤¬ËÉÙ¤Ë¤Ç¤¤ë¡£ + ÆÃÊÌ¤Ê¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¥½¥Õ¥È¤¬Í×¤é¤Ê¤¤¡£ Ã»½ê - - ISP ¤«¤é¥µ¥Ö¥Í¥Ã¥È IP ¥¢¥É¥ì¥¹¤òÌã¤¦É¬Í×¤¬¤¢¤ë¡£ (¹â²Á)  ¥Í¥Ã¥È¥ï¡¼¥¯¥¢¥É¥ì¥¹ÊÑ´¹ (Network Address Translation) ¤Ï¥Ñ¥Ö¥ê¥Ã¥¯ ¥¢¥É¥ì¥¹¤È¤·¤Æ»ÈÍÑ¤Ç¤¤ëÍ¸ú¤Ê IP ¥¢¥É¥ì¥¹¤ò¥×¡¼¥ë¤·¤Æ¤¤¤ëÈ¢¤ÎÌ¾Á°¤Ç¤¹¡£ ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤«¤é¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë¹Ô¤¤¿¤«¤Ã¤¿¾ì¹ç¡¢¥ê¥¯¥¨¥¹¥È¤·¤Æ¤¤¤ë ¥¯¥é¥¤¥¢¥ó¥È¤Î¥×¥é¥¤¥Ù¡¼¥È¥¢¥É¥ì¥¹¤ò¡¢ÍøÍÑ²ÄÇ½¤ÊÍ¸ú¤Ê¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤Ë½ñ¤´¹¤¨¤Æ¥ê¥¯¥¨¥¹¥È¤ò¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÈ¯¹Ô¤·¤Þ¤¹¡£¤½¤Î¸å¤Î±þÅú ¥È¥é¥Õ¥£¥Ã¥¯¤Ï¤¹¤Ù¤Æ¡¢NAT ¤Î¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤«¤é¥×¥é¥¤¥Ù¡¼¥È¡¦ ¥¢¥É¥ì¥¹¤Ë½ñ¤´¹¤¨¤é¤ì¤Þ¤¹¡£»ÈÍÑ¤µ¤ì¤Æ¤¤¤¿¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤¬ ¤¢¤é¤«¤¸¤á·è¤á¤é¤ì¤¿°ìÄê»þ´Ö»ÈÍÑ¤µ¤ì¤Ê¤¤¤È¡¢ ¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹ ¤Ï¥Ñ¥Ö¥ê¥Ã¥¯ NAT ¥×¡¼¥ë¤ØÌá¤µ¤ì¤Þ¤¹¡£ ¥Í¥Ã¥È¥ï¡¼¥¯¥¢¥É¥ì¥¹ÊÑ´¹ (Network Address Translation) ¤Ï¡¢ ¥Ñ¥Ö¥ê¥Ã¥¯¥¢¥É¥ì¥¹¤È¤·¤Æ»ÈÍÑ¤Ç¤¤ëÍ¸ú¤Ê IP ¥¢¥É¥ì¥¹¤ò¥×¡¼¥ë ¤·¤Æ¤¤¤ëÈ¢¤ÎÌ¾Á°¤Ç¤¹¡£ ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤«¤é¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë¹Ô¤¤¿¤¤¾ì¹ç¡¢ÀÜÂ³Í×µá¤ò ½Ð¤·¤Æ¤¤¤ë¥¯¥é¥¤¥¢¥ó¥È¤Î¥×¥é¥¤¥Ù¡¼¥È¥¢¥É¥ì¥¹¤ò¡¢¶õ¤¤¤Æ¤¤¤ëÍ¸ú¤Ê ¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤Ë½ñ¤´¹¤¨¤Æ¡¢ÀÜÂ³Í×µá¤ò¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë È¯¹Ô¤·¤Þ¤¹¡£ ¤½¤Î¸å¤Î±þÅú¥È¥é¥Õ¥£¥Ã¥¯¤ÏÁ´¤Æ¡¢NAT ¤Î¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤«¤é ¥×¥é¥¤¥Ù¡¼¥È¡¦¥¢¥É¥ì¥¹¤Ë½ñ¤´¹¤¨¤é¤ì¤Þ¤¹¡£ »ÈÍÑ¤µ¤ì¤Æ¤¤¤¿¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤¬Í½¤á·è¤á¤é¤ì¤¿°ìÄê»þ´Ö »ÈÍÑ¤µ¤ì¤Ê¤¤¤È¡¢¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤Ï¥Ñ¥Ö¥ê¥Ã¥¯ NAT ¥×¡¼¥ë¤Ø Ìá¤µ¤ì¤Þ¤¹¡£  NAT ¤Ë´Ø¤¹¤ëÂç¤¤ÊÌäÂê¤Ï¡¢°ìÅÙ¼«Í³¤Ë»È¤¨¤ë¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤¬¤¹¤Ù ¤Æ»ÈÍÑ¤µ¤ì¤Æ¤·¤Þ¤¦¤È¡¢¤½¤Î¸å¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥µ¡¼¥Ó¥¹¤òÍ×µá¤¹¤ë¤É¤Î¥×¥é¥¤ ¥Ù¡¼¥È¥æ¡¼¥¶¤â¥Ñ¥Ö¥ê¥Ã¥¯ NAT ¥¢¥É¥ì¥¹¤Ë¶õ¤¤¬½Ð¤ëËøÉÔ±¿¤Ë¤â¥¤¥ó¥¿¡¼¥Í ¥Ã¥È¤ò»È¤¦¤³¤È¤¬¤Ç¤¤Þ¤»¤ó¡£ NAT ¤Ë´Ø¤¹¤ëÂç¤¤ÊÌäÂê¤Ï¡¢°ìÅÙ¼«Í³¤Ë»È¤¨¤ë¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤¬ Á´¤Æ»È¤ï¤ì¤Æ¤·¤Þ¤¦¤È¡¢¤½¤Î¸å¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥µ¡¼¥Ó¥¹¤òÍ×µá¤¹¤ë ¤É¤Î¥×¥é¥¤¥Ù¡¼¥È¥æ¡¼¥¶¤â¡¢¥Ñ¥Ö¥ê¥Ã¥¯ NAT ¥¢¥É¥ì¥¹¤Ë¶õ¤¤¬½Ð¤ëËø¤Ï ÉÔ±¿¤Ë¤â¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤òÍøÍÑ¤Ç¤¤Ê¤¤¤³¤È¤Ç¤¹¡£ </verb> ]]> <verb> ¥×¥í¥¥·: ¥×¥í¥¥·¥µ¡¼¥Ð¤Ï¼¡¤Î¤â¤Î¤ÇÍøÍÑ²ÄÇ½¤Ç¤¹: Win95, NT, Linux, Solaris¤Ê¤É¡£ Ä¹½ê - + 1 IP ¥¢¥É¥ì¥¹: °Â²Á + ÀÇ½¸þ¾å¤Î¤¿¤á¤Ë¥¥ã¥Ã¥·¥ó¥°¡¦¥ª¥×¥·¥ç¥ó¤¬¤¢¤ë¡£ (www Â¾) Ã»½ê - - ¥×¥í¥¥·¥µ¡¼¥Ð¤Ë·Ò¤¬¤ë¥¯¥é¥¤¥¢¥ó¥È¤Î ¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤Ï¥×¥í¥¥·¡¦¥µ¡¼¥Ó¥¹ (SOCKS) ¤ò ¥µ¥Ý¡¼¥È¤·¡¢³î¤Ä¥×¥í¥¥·¥µ¡¼¥Ð¤ò»È¤¦¤è¤¦¤ËÀßÄê ¤·¤Ê¤±¤ì¤Ð¤Ê¤é¤Ê¤¤¡£ - WWW ¤Î¥«¥¦¥ó¥¿¤ÈÅý·×¾ðÊó¤¬¶¸¤Ã¤Æ¤·¤Þ¤¤¤Þ¤¹¡£ ¥×¥í¥¥·¥µ¡¼¥Ð¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÈÆ±ÍÍ¤Ë¡¢ 1 ¤Ä¤Î¥°¥í¡¼¥Ð¥ë IP ¥¢¥É¥ì¥¹¤Î¤ß»ÈÍÑ¤·¡¢¥×¥é¥¤¥Ù¡¼¥È LAN ¾å¤Î¥¯¥é¥¤¥¢¥ó¥È (WWW ¥Ö¥é¥¦¥¶ Åù) ¤Ø¤ÎËÝÌõµ¡¤È¤·¤ÆÆ°ºî¤·¤Þ¤¹¡£ ¤³¤Î¥×¥í¥¥·¥µ¡¼¥Ð¤Ï¡¢1 ¤Ä¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Ë·Ò¤¬¤ë¥×¥é¥¤¥Ù¡¼¥È ¥Í¥Ã¥È¥ï¡¼¥¯¤«¤é TELNET, FTP, WWW Åù¤Î¤è¤¦¤ÊÀÜÂ³Í×µá¤ò¼õ¤±¼è¤ê¤Þ¤¹¡£ ¤½¤·¤Æ¡¢¤¢¤¿¤«¤â¥í¡¼¥«¥ë¥Ü¥Ã¥¯¥¹¾å¤ÎÃ¯¤«¤¬ÀÜÂ³Í×µá¤òÈ¯¤·¤Æ¤¤¤ë¤«¤Î ¤è¤¦¤Ë¡¢½çÈÖ¤Ë¤³¤ì¤é¤Î¥ê¥¯¥¨¥¹¥È¤ò³°Éô¤ËÁ÷¿®¤·¤Þ¤¹¡£ ±ó³Ö¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥µ¡¼¥Ð¤¬Í×µá¤µ¤ì¤¿¾ðÊó¤òÁ÷¤êÊÖ¤·¤Æ¤¯¤ë¤È¡¢ º£ÅÙ¤ÏÆâÉô¥¯¥é¥¤¥¢¥ó¥È¤ËºÆÅÙ TCP/IP ¥¢¥É¥ì¥¹¤òËÝÌõ¤·¡¢¥È¥é¥Õ¥£¥Ã¥¯¤ò Á÷¤ê¤Þ¤¹¡£ ¤³¤Î¤¿¤á¡¢¤½¤ì¤Ï¥×¥í¥¥·¥µ¡¼¥Ð¡ÚÌõÃí: ÂåÍý¥µ¡¼¥Ð¡Û¤È¸Æ¤Ð¤ì¤Þ¤¹¡£ Ãí°Õ - ¤¢¤é¤æ¤ë¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤â¡¢¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î¥Þ¥·¥ó¤Ç »È¤¤¤¿¤¤¾ì¹ç¤Ï¡¢ Netscape ¤ä´ö¤Ä¤«¤ÎÍ¥½¨¤Ê TELNET ¤ä FTP ¥¯¥é¥¤¥¢¥ó¥È¤Î¤è¤¦¤Ë¡¢¥×¥í¥¥·¥µ¡¼¥Ð¤Î¥µ¥Ý¡¼¥È¤¬ ¤µ¤ì¤Æ¤¤¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ ¥×¥í¥¥·¥µ¡¼¥Ð¤Î¥µ¥Ý¡¼¥È¤¬¤µ¤ì¤Æ¤¤¤Ê¤¤¥¯¥é¥¤¥¢¥ó¥È ¥×¥í¥°¥é¥à¤ÏÆ°ºî¤·¤Þ¤»¤ó¡£ ¥×¥í¥¥·¥µ¡¼¥Ð¤Î¤â¤¦°ì¤Ä¤ÎÍøÅÀ¤È¤·¤Æ¡¢¥×¥í¥¥·¥µ¡¼¥Ð¤ÎÃæ¤Ë¤Ï ¥¥ã¥Ã¥·¥ó¥°¤Î¤Ç¤¤ë¤â¤Î¤â¤¢¤ë¤³¤È¤Ç¤¹ (Squid for WWW) ¡£ Îã¤¨¤Ð 50 Âæ¤Î¥×¥í¥¥·¤µ¤ì¤¿ PC ¤¬¤¢¤Ã¤Æ¡¢¤½¤ì¤é¤¬Æ±»þ¤Ë Netscape ¤òµ¯Æ°¤·¤¿¤ÈÁÛÁü¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤ì¤é¤¬¥Ç¥Õ¥©¥ë¥È¤Î¥Û¡¼¥à¥Ú¡¼¥¸ URL ¤Î¤Þ¤Þ¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤Æ ¤¤¤¿¤Ê¤é¡¢Æ±¤¸ Netscape WWW ¥Ú¡¼¥¸¤¬³Æ¡¹¤Î¸Ä¡¹¤Î¥³¥ó¥Ô¥å¡¼¥¿¤Ë ÊÌ¡¹¤Ë 50 ²ó WAN ¥ê¥ó¥¯¤ò²ð¤·¤ÆÁ÷¤é¤ì¤ë¤³¤È¤Ë¤Ê¤ê¤Þ¤¹¡£ ¥¥ã¥Ã¥·¥å¤ò»ý¤Ã¤¿¥×¥í¥¥·¥µ¡¼¥Ð¤Ç¤Ï¡¢ 1 ²ó¤À¤±¤¬¥×¥í¥¥·¥µ¡¼¥Ð ¤Ë¤è¤Ã¤Æ¥À¥¦¥ó¥í¡¼¥É¤µ¤ì¡¢¥×¥í¥¥·¤µ¤ì¤¿¥Þ¥·¥ó¤Ï¥×¥í¥¥·Æâ¤Î ¥¥ã¥Ã¥·¥å¤«¤é WWW ¥Ú¡¼¥¸¤ò¼õ¤±¼è¤ê¤Þ¤¹¡£ ¤³¤ì¤Ï¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³Ãæ¤ÎÂÓ°èÉý¤òÀáÌó¤¹¤ë¤À¤±¤Ç¤Ê¤¯¡¢ ¥×¥í¥¥·¤µ¤ì¤¿¥Þ¥·¥ó¤Ë¤È¤Ã¤ÆÈó¾ï¤ËÁá¤¤±þÅúÂ®ÅÙ¤Ë¤Ê¤ê¤Þ¤¹¡£ ¥Þ¥¹¥«¥ì¡¼¥É- IP ¥Þ¥¹¥«¥ì¡¼¥É ¤Ï¡¢Linux µÚ¤Ó Zytel Prestige128, Cisco 770, µÚ¤Ó NetGear ISDN routers Åù¡¢´ö¤Ä¤«¤Î ISDN ¥ë¡¼¥¿¤ÇÍøÍÑ²ÄÇ½¤Ç¤¹¡£ 1ÂÐÂ¿IP¤Î NAT Ä¹½ê - + 1 IP¥¢¥É¥ì¥¹¤À¤±¤¬É¬Í×¡£(°Â²Á)¡£ + ÆÃÊÌ¤Ê¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤Ë¤è¤ë¥µ¥Ý¡¼¥È¤òÍ×µá¤·¤Ê¤¤¡£ + ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥½¥Õ¥È¥¦¥§¥¢¤ò»ÈÍÑ¤¹¤ë¤Î¤Ç¡¢ ¥Í¥Ã¥È¥ï¡¼¥¯¤¬¤è¤ê°ÂÁ´¤Ë¤Ê¤ë¡£ Ã»½ê - - Linux ¥Ü¥Ã¥¯¥¹¤«¡¢ÆÃÊÌ¤Ê ISDN ¥ë¡¼¥¿¤òÉ¬Í×¤È¤¹¤ë¡£ (Â¾¤ÎÀ½ÉÊ¤ÏÅëºÜ¤·¤Æ¤¤¤ë¤«¤âÃÎ¤ì¤Þ¤»¤ó¤¬..) - ÆâÉô LAN ¤¬ºÇ½é¤Î¥È¥é¥Õ¥£¥Ã¥¯¤òÈ¯À¸¤µ¤»¤ë¤«¡¢°¿¤Ï ÆÃÄê¤Î¥Ý¡¼¥È¡¦¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¡¦¥½¥Õ¥È¥¦¥§¥¢¤¬ ¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤Æ¤¤¤Ê¤±¤ì¤Ð¡¢³°¤«¤éÍè¤ë ¥È¥é¥Õ¥£¥Ã¥¯¤ÏÆâÉô LAN ¤Ë¥¢¥¯¥»¥¹¤Ç¤¤Ê¤¤¡£ Â¿¤¯¤Î NAT ¥µ¡¼¥Ð¤Ï¤³¤Îµ¡Ç½¤ò»ý¤Ã¤Æ¤¤¤Þ¤»¤ó¡£ - ÆÃ¼ì¤Ê¥×¥í¥È¥³¥ë¤ò°·¤¦¤Ë¤Ï¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦ ¥ê¥À¥¤¥ì¥¯¥¿Åù¤Ë¤è¤Ã¤Æ¸Ä¡¹¤ÎÀßÄê¤¬É¬Í×¡£ Linux ¤Ï¡¢¤³¤Îµ¡Ç½ ( FTP¡¢IRC Åù) ¤ÎÁ´ÌÌÅª¤Ê ¥µ¥Ý¡¼¥È¤ò¤·¤Æ¤¤¤ë¤¬¡¢Â¿¤¯¤Î¥ë¡¼¥¿¤Ï¥µ¥Ý¡¼¥È¤·¤Æ ¤¤¤Ê¤¤¡£ (NetGear ¤Ï¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤Þ¤¹) IP ¥Þ¥¹¥«¥ì¡¼¥É¤ä 1ÂÐÂ¿ IP ¤Î NAT ¤Ï¡¢¥µ¡¼¥Ð¤¬ IP ¥¢¥É¥ì¥¹ËÝÌõ¤ò ¹Ô¤¤¡¢ÆâÉô¥Þ¥·¥ó¤ËÂå¤ï¤Ã¤Æ¤¢¤¿¤«¤â¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤¬ÀÜÂ³Í×µá¤ò È¯À¸¤·¤Æ¤¤¤ë¤«¤Î¤è¤¦¤Ë¡¢±ó³Ö¤Î¥µ¡¼¥Ð (Îã¤¨¤Ð WWW ¥µ¡¼¥Ð) ¤Ë Á÷¤ê½Ð¤¹¤È¤¤¤¦°ÕÌ£¤Ç¡¢¥×¥í¥¥·¥µ¡¼¥Ð¤Ë»÷¤Æ¤¤¤Þ¤¹¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¤È¥×¥í¥¥·¥µ¡¼¥Ð¤Î¼ç¤Ê°ã¤¤¤Ï¡¢¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤Ï ¥¯¥é¥¤¥¢¥ó¥È¥Þ¥·¥ó¤ÎÀßÄêÊÑ¹¹¤òÁ´¤¯É¬Í×¤È¤·¤Ê¤¤¤È¤¤¤¦¤³¤È¤Ç¤¹¡£ ¥¯¥é¥¤¥¢¥ó¥È¤Î¥Ç¥Õ¥©¥ë¥È¥²¡¼¥È¥¦¥§¥¤¤È¤·¤Æ Linux ¥Ü¥Ã¥¯¥¹¤ò»È¤¦¤è¤¦¤Ë ÀßÄê¤µ¤¨¤¹¤ì¤Ð¡¢ÌäÂê¤Ê¤¯Æ¯¤¤Þ¤¹¡£ ¤¿¤À RealAudio, FTP Åù¤ò»È¤¦¤Ë¤Ï¡¢¤½¤ì¤é¤ÎÆÃÊÌ¤Ê Linux ¥â¥¸¥å¡¼¥ë¤ò ¥¤¥ó¥¹¥È¡¼¥ë¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¹¹¤Ë¡¢Â¿¤¯¤Î¿Í¡¹¤Ï TELNET, FTP Åù¤Î°Ù¤Ë IP ¥Þ¥¹¥«¥ì¡¼¥É ¤ò »ÈÍÑ¤·¤Þ¤¹¡£ ¤½¤ì¤Ë²Ã¤¨¤Æ¡¢¹¹¤Ë www ¤Î¥È¥é¥Õ¥£¥Ã¥¯¤ÎÀÇ½¤ò¾å¤²¤ë°Ù¤Ë¡¢Æ±¤¸ Linux ¥Ü¥Ã¥¯¥¹¤ÎÃæ¤Ë¥¥ã¥Ã¥å¤òÍø¤«¤»¤¿¥×¥í¥¥·¤òÀßÄê¤·¤Þ¤¹¡£ NAT - NAT ¥µ¡¼¥Ð¤Ï Windows 95/NT, Linux, Solaris ¤ä¹âµé¤Ê ISDN¥ë¡¼¥¿¤Ç ÍøÍÑ²ÄÇ½¤Ç¤¹¡£(Ascend ¼ÒÀ½¤Î¤â¤Î¤ò½ü¤¯) Ä¹½ê - + ÀßÄê¤¬ËÉÙ¤Ë¤Ç¤¤ë¡£ + ÆÃÊÌ¤Ê¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¥½¥Õ¥È¤¬Í×¤é¤Ê¤¤¡£ Ã»½ê - - ISP ¤«¤é¥µ¥Ö¥Í¥Ã¥È IP ¥¢¥É¥ì¥¹¤òÌã¤¦É¬Í×¤¬¤¢¤ë¡£ (¹â²Á) ¥Í¥Ã¥È¥ï¡¼¥¯¥¢¥É¥ì¥¹ÊÑ´¹ (Network Address Translation) ¤Ï¡¢ ¥Ñ¥Ö¥ê¥Ã¥¯¥¢¥É¥ì¥¹¤È¤·¤Æ»ÈÍÑ¤Ç¤¤ëÍ¸ú¤Ê IP ¥¢¥É¥ì¥¹¤ò¥×¡¼¥ë ¤·¤Æ¤¤¤ëÈ¢¤ÎÌ¾Á°¤Ç¤¹¡£ ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤«¤é¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë¹Ô¤¤¿¤¤¾ì¹ç¡¢ÀÜÂ³Í×µá¤ò ½Ð¤·¤Æ¤¤¤ë¥¯¥é¥¤¥¢¥ó¥È¤Î¥×¥é¥¤¥Ù¡¼¥È¥¢¥É¥ì¥¹¤ò¡¢¶õ¤¤¤Æ¤¤¤ëÍ¸ú¤Ê ¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤Ë½ñ¤´¹¤¨¤Æ¡¢ÀÜÂ³Í×µá¤ò¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë È¯¹Ô¤·¤Þ¤¹¡£ ¤½¤Î¸å¤Î±þÅú¥È¥é¥Õ¥£¥Ã¥¯¤ÏÁ´¤Æ¡¢NAT ¤Î¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤«¤é ¥×¥é¥¤¥Ù¡¼¥È¡¦¥¢¥É¥ì¥¹¤Ë½ñ¤´¹¤¨¤é¤ì¤Þ¤¹¡£ »ÈÍÑ¤µ¤ì¤Æ¤¤¤¿¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤¬Í½¤á·è¤á¤é¤ì¤¿°ìÄê»þ´Ö »ÈÍÑ¤µ¤ì¤Ê¤¤¤È¡¢¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤Ï¥Ñ¥Ö¥ê¥Ã¥¯ NAT ¥×¡¼¥ë¤Ø Ìá¤µ¤ì¤Þ¤¹¡£ NAT ¤Ë´Ø¤¹¤ëÂç¤¤ÊÌäÂê¤Ï¡¢°ìÅÙ¼«Í³¤Ë»È¤¨¤ë¥Ñ¥Ö¥ê¥Ã¥¯ IP ¥¢¥É¥ì¥¹¤¬ Á´¤Æ»È¤ï¤ì¤Æ¤·¤Þ¤¦¤È¡¢¤½¤Î¸å¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥µ¡¼¥Ó¥¹¤òÍ×µá¤¹¤ë ¤É¤Î¥×¥é¥¤¥Ù¡¼¥È¥æ¡¼¥¶¤â¡¢¥Ñ¥Ö¥ê¥Ã¥¯ NAT ¥¢¥É¥ì¥¹¤Ë¶õ¤¤¬½Ð¤ëËø¤Ï ÉÔ±¿¤Ë¤â¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤òÍøÍÑ¤Ç¤¤Ê¤¤¤³¤È¤Ç¤¹¡£ </verb>   ¿§¡¹¤Ê·ÁÂÖ¤Î NAT ¤Ë´Ø¤¹¤ë¡¢Èó¾ï¤ËÉý¤Î¹¤¤Í¥¤ì¤¿µ½Ò¤¬¤¢¤ë¤Î¤Ç¸«¤Æ¤¯¤À¤µ¤¤ - <itemize> <item><url url="http://www.suse.de/~mha/linux-ip-nat/diplom/nat.html"> </itemize>  ¤³¤³¤Ï¡¢ NAT ¤Ë´Ø¤·¤Æ³Ø½¬¤¹¤ë¤è¤¤¥µ¥¤¥È¤Ç¤¹¡£URL ¤ÎÂ¿¤¯¤Ï¸Å¤¤¤Ç¤¹¤¬¡¢ ¤Þ¤ÀÍ¸ú¤Ç¤¹ - <itemize> <item><url url="http://www.linas.org/linux/load.html"> </itemize>   ¤³¤³¤Ï¡¢ Linux ¤äÂ¾¤Î¥×¥é¥Ã¥È¥Õ¥©¡¼¥àÍÑ¤Ë¡¢Â¾¤Î NAT ¤Ë¤è¤ë²ò·èÊýË¡¤ò ÃÎ¤ë¤¿¤á¤ÎÎÉ¤¤ URL ¤Ç¤¹ -  <itemize> <item><url url="http://www.uq.net.au/~zzdmacka/the-nat-page/"> </itemize>   <sect1> GUI ¤Î ¥Õ¥¡¥¤¥¢¡¼¥¦¥©¡¼¥ëºîÀ®´ÉÍý¥Ä¡¼¥ë¤Ï¤¢¤ê¤Þ¤¹¤«?   ¤Ï¤¤! ¥æ¡¼¥¶¡¦¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤äÊ£»¨¤µ¤Ê¤É¤Ë¤ª¤¤¤Æº¹¤¬¤¢¤ê¡¢ÂçÉôÊ¬¤Ï IPFWADM ¥Ä¡¼¥ëÍÑ¤À¤±¤Ç¤¹¤¬¡¢¤È¤Æ¤âÎÉ¤¤¤â¤Î¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤³¤Ë¥¢¥ë¥Õ¥¡¥Ù¥Ã¥È½ç¤ËÍøÍÑ²ÄÇ½¤Ê¥Ä¡¼¥ë¤Î¥ê¥¹¥È¤¬¤¢¤ê¤Þ¤¹¡£ Â¾¤Î¤â¤Î¤òÃÎ¤Ã¤Æ¤¤¤ë¤«¡¢¤É¤ì¤¬ÎÉ¤¤¤È¤«¡¢°¤¤¤È¤«¡¢»È¤¨¤Ê¤¤¤È¤«¤Î¹Í¤¨¤¬ ¤¢¤Ã¤¿¤é¡¢ David ¤Ë¥á¡¼¥ë¤·¤Æ¤¯¤À¤µ¤¤¡£ <itemize>   <item>John Hardin ¤Î <htmlurl url="http://www.wolfenet.com/~jhardin/ipfwadm.html" name="IPFWADM Dot file generator"> - IPCHAINS ¥Ð¡¼¥¸¥ç¥ó¤¬Æ°ºî¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¾åµ web site ¤Ç¤¹¤¬¡¢ ipchains ¥Ð¡¼¥¸¥ç¥ó¤ÏÂ¸ºß¤·¤Þ¤»¤ó¡£ ºîÀ®¤·¤¿¥ë¡¼¥ë¥Õ¥¡¥¤¥ë¤ò <htmlurl url="http://www.wolfenet.com/~jhardin/ipfwadm.html" name="ipfwadm2ipchains"> ¤ÇÊÑ´¹¤·¤ÆÍß¤·¤¤¡¢¤È¤¢¤ê¤Þ¤¹¡£¡Û   <item>Sonny Parlin ¤Î <url url="http://www.innertek.com" name="fBuilder"> - FWCONFIG ºî¼Ô¤«¤é¡¢¤³¤Î¿·¤·¤¤²ò·èÊýË¡¤Ï´°Á´¤Ê WWW ¥Ù¡¼¥¹¤Ç¡¢ ¾éÄ¹À¥ª¥×¥·¥ç¥óÅù¤¬¤¢¤ê¡¢ IPCHAINS ¤È Netfilter ¤ÎÎ¾Êý¤ËÂÐ±þ¤·¤Æ¤¤¤Þ¤¹¡£  <item>William Stearns ¤Î <url url="http://www.pobox.com/˜wstearns/mason/" name="Mason"> - ¥ë¡¼¥ë¥»¥Ã¥È¤òÄ¾ÀÜºî¤ë¥¿¥¤¥×¤Î¥·¥¹¥Æ¥à </itemize>   <sect1>IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÏÆ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤¿ IP ¥¢¥É¥ì¥¹¤ÇÆ°ºî¤·¤Þ¤¹¤«?   <bf>¤Ï¤¤</bf>¡¢PPP °¿¤Ï DHCP/BOOTp ¥µ¡¼¥ÐÅù¤Ë¤è¤Ã¤Æ¡¢ ISP ¤«¤é ³ä¤êÅö¤Æ¤é¤ì¤¿Æ°Åª IP ¥¢¥É¥ì¥¹¤ÇÆ°ºî¤·¤Þ¤¹¡£ Í¸ú¤Ê¥¤¥ó¥¿¡¼¥Í¥Ã¥È IP ¥¢¥É¥ì¥¹¤ò»ý¤Ä¸Â¤ê¡¢Æ°ºî¤¹¤ëÈ¦¤Ç¤¹¡£ ÌÞÏÀ¡¢ÀÅÅª¤Ê IP ¤Ç¤âÆ°ºî¤·¤Þ¤¹¡£ IPFWADM/IPCHAINS ¤ò»È¤Ã¤¿¶¯¤¤¥ë¡¼¥ë¥»¥Ã¥È¤ò»È¤ª¤¦¤È¤·¤Æ¤¤¤ë¤«¡¢ ¥Ý¡¼¥ÈÅ¾Á÷¤ò»È¤ª¤¦¤È¤·¤Æ¤¤¤ë¤Ê¤é¡¢¤³¤ì¤é¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Ï IP ¥¢¥É¥ì¥¹¤¬ ÊÑ¹¹¤µ¤ì¤ëÅÙËè¤ËºÆ¼Â¹Ô¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ ¶¯¤¤¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥ë¡¼¥ë¥»¥Ã¥È¤ÈÆ°Åª IP ¥¢¥É¥ì¥¹¤Ë´Ø¤¹¤ëÊäÂÀâÌÀ¤Ï <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - Section 10"> ¤Ë¤¢¤ê¤Þ¤¹¤Î¤Ç¸«¤Æ¤¯¤À¤µ¤¤¡£    <sect1> ¥±¡¼¥Ö¥ë¡¦¥â¥Ç¥à(ÁÐÊý¸þ¤È¥â¥Ç¥à¡¦¥ê¥¿¡¼¥ó¤ÎÎ¾Êý)¤ä¡¢ DSL, ±ÒÀ±¥ê¥ó¥¯Åù¤ò»ÈÍÑ¤·¤Æ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤·¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò »È¤¦¤³¤È¤¬¤Ç¤¤Þ¤¹¤«?   <bf>¤Ï¤¤</bf>¡¢ Linux ¤¬¤½¤Î¥Í¥Ã¥È¥ï¡¼¥¯¥¤¥ó¥¿¡¼¥Õ¥§¥¤¥¹¤ò ¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤ë¸Â¤ê¡¢¤½¤ì¤ÏÆ°ºî¤·¤Þ¤¹¡£ Æ°Åª IP ¥¢¥É¥ì¥¹¤ò»È¤Ã¤Æ¤¤¤ë¤Ê¤é¡¢ FAQ ¹àÌÜÆâ¤Î¾åµ¡Ö IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï Æ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤¿ IP ¥¢¥É¥ì¥¹¤ÇÆ°ºî¤·¤Þ¤¹¤«?¡×¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£   <sect1> Diald ¤Þ¤¿¤Ï PPPd ¤Î¥À¥¤¥¢¥ë¥ª¥ó¥Ç¥Þ¥ó¥Éµ¡Ç½¤ò IP ¥Þ¥¹¥«¥ì¡¼¥É¤È °ì½ï¤Ë»È¤¨¤ë¤Ç¤·¤ç¤¦¤«?   ¤â¤Á¤í¤ó¤Ç¤¹! IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï Diald ¤Þ¤¿¤Ï PPP ¤Ë¤ª¤¤¤Æ´°Á´¤Ë Æ©²áÅª¤Ç¤¹¡£ Í£°ì¤ÎÌäÂêÅÀ¤Ï¡¢Æ°Åª IP ¥¢¥É¥ì¥¹¤òÈ÷¤¨¤¿¡Ö¶¯¤¤¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥ë¡¼¥ë¥»¥Ã¥È¡× ¤ò»ÈÍÑ¤¹¤ë¤«¤É¤¦¤«¤Ç¤¹¡£ ¾Ü¤·¤¯¤Ï FAQ ¹àÌÜ¤Î¾åµ¡Ö IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÏÆ°Åª¤Ë³ä¤êÅö¤Æ¤é¤ì¤¿ IP ¥¢¥É¥ì¥¹¤ÇÆ°ºî¤·¤Þ¤¹¤«?¡×¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£   <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ç¤Ï¡¢¤É¤ó¤Ê¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤¬¥µ¥Ý¡¼¥È¤µ¤ì¤Æ¤¤¤Þ¤¹¤«?   Æ°ºî¤¹¤ë¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤Î¥ê¥¹¥È¤ò¹¹¿·¤·Â³¤±¤ë¤³¤È¤ÏÈó¾ï¤Ëº¤Æñ¤Ç¤¹¡£ ¤·¤«¤·¤Ê¤¬¤é¡¢ (Netscape, MSIE, Åù¤Î) WWW ¥Ö¥é¥¦¥¶¡¢ (WS_FTP Åù¤Î) FTP, TELNET, SSH, RealAudio, POP3 (¥á¡¼¥ë¼õ¿® - Pine, Eudora, Outlook), SMTP (¥á¡¼¥ëÁ÷¿®) Åù¡¢ÄÌ¾ï¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤ÎËØ¤É¤Ï ¥µ¥Ý¡¼¥È¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ ¥Þ¥¹¥«¥ì¡¼¥É¸ß´¹¤Î¥¯¥é¥¤¥¢¥ó¥È¤ÎÂ¿¾¯´°Á´¤Ê¥ê¥¹¥È¤Ï¤³¤Î HOWTO ¤Î <ref id="Clients" name="¥¯¥é¥¤¥¢¥ó¥È"> ¤Î¾Ï¤Ë¤¢¤ê¤Þ¤¹¡£   ¤è¤êÊ£»¨¤Ê¥×¥í¥È¥³¥ë¤ä¡¢°¿¤Ï¥Ó¥Ç¥ª²ñµÄ¥½¥Õ¥È¥¦¥§¥¢¤Î¤è¤¦¤ÊÆÃÊÌ¤Ê ÀÜÂ³ÊýË¡¤ò»È¤Ã¤Æ¤¤¤ë¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤Ï¡¢ÀìÍÑ¤ÎÊä½õ¥Ä¡¼¥ë¤ò»È¤¦ É¬Í×¤¬¤¢¤ê¤Þ¤¹¡£  ¤è¤ê¾ÜºÙ¤Ë¤Ï¡¢<url url="http://www.tsmservices.com/masq" name="Linux IP masquerading Applications"> ¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£   <sect1> ¤É¤¦¤ä¤Ã¤¿¤é IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò Redhat, Debian, Slackware Åù¤Ç ²ÔÆ¯¤µ¤»¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¤«?   ¤³¤Î HOWTO ¤ÎÃæ¤ÇÀâÌÀ¤·¤Æ¤¤¤ë IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥»¥Ã¥È¥¢¥Ã¥×¼ê½ç¤Ï¡¢ ¤ª¼ê»ý¤Á¤Î Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Î¼ïÎà¤òÌä¤ï¤ºÅ¬ÍÑ¤Ç¤¤Þ¤¹¡£ ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤ÎÃæ¤Ë¤Ï¡¢¥»¥Ã¥È¥¢¥Ã¥×¤ò¤è¤êÍÆ°×¤Ë¤¹¤ë GUI °¿¤Ï ÆÃÊÌ¤ÎÀßÄê¥Õ¥¡¥¤¥ë¤ò»ý¤Ã¤Æ¤¤¤ë¤â¤Î¤â¤¢¤ë¤«¤âÃÎ¤ì¤Þ¤»¤ó¡£ »äÃ£¤Ï¤Ç¤¤ë¤À¤±°ìÈÌÅª¤Ê HOWTO ¤ò½ñ¤¯°Ù¤ËºÇÁ±¤ò¿Ô¤¯¤·¤Æ¤¤¤Þ¤¹¡£   <sect1>¤·¤Ð¤·¤Ð»ÈÍÑ¤·¤Æ¤¤¤Ê¤¤¤È TELNET ÀÜÂ³¤¬ÀÚ¤ì¤ë¤è¤¦¤Ë¸«¤¨¤Þ¤¹¡£ ¤Ê¤¼¤Ç¤·¤ç¤¦¤«?   IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï TCP ¥»¥Ã¥·¥ç¥ó¡¢ TCP FIN µÚ¤Ó UDP ¥È¥é¥Õ¥£¥Ã¥¯¤Î ¥¿¥¤¥à¥¢¥¦¥È¡¦¥¿¥¤¥Þ¤ò¥Ç¥Õ¥©¥ë¥È¤Ç15Ê¬¤ËÀßÄê¤·¤Þ¤¹¡£ ËØ¤É¤Î¥æ¡¼¥¶¤Ë¤Ï¼¡¤ÎÀßÄê (¤³¤Î HOWTO¤Î /etc/rc.d/rc.firewall ruleset ¤Î Ãæ¤Ç´û¤Ë¼¨¤·¤Þ¤·¤¿) ¤ò»È¤³¤È¤ò¤ª¾©¤á¤·¤Þ¤¹¡£  Linux 2.0.x ¤Ç IPFWADM ¤ò»È¤¦¾ì¹ç -  <verb> # IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥¿¥¤¥à¥¢¥¦¥È # # TCP¥»¥Ã¥·¥ç¥ó¤Î¥¿¥¤¥à¥¢¥¦¥È¤Ï 2 »þ´Ö # TCP/IP ¤Î ¡Ö FIN ¡×¥Ñ¥±¥Ã¥È¤¬¼õ¿®¤µ¤ì¤¿¸å¤Î¥¿¥¤¥à¥¢¥¦¥È¤Ï 10 ÉÃ # UDP ¥È¥é¥Õ¥£¥Ã¥¯¤Î¥¿¥¤¥à¥¢¥¦¥È¤Ï 60 ÉÃ (¥Þ¥¹¥«¥ì¡¼¥É¡¦¥¯¥é¥¤¥¢¥ó¥È¤Î # ICQ ¥æ¡¼¥¶¤Ï¡¢ ICQ ¤ÎÀßÄê¤ÎÃæ¤Ç¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥¿¥¤¥à¥¢¥¦¥ÈÃÍ¤ò # 30 ÉÃ¤Þ¤Çµö¤¹¤è¤¦¤Ë¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£) # /sbin/ipfwadm -M -s 7200 10 60 </verb>  Linux 2.2.x ¤Ç IPCHAINS ¤ò»È¤¦¾ì¹ç -  <verb> # IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥¿¥¤¥à¥¢¥¦¥È # # TCP¥»¥Ã¥·¥ç¥ó¤Î¥¿¥¤¥à¥¢¥¦¥È¤Ï 2 »þ´Ö # TCP/IP ¤Î ¡Ö FIN ¡×¥Ñ¥±¥Ã¥È¤¬¼õ¿®¤µ¤ì¤¿¸å¤Î¥¿¥¤¥à¥¢¥¦¥È¤Ï 10 ÉÃ # UDP ¥È¥é¥Õ¥£¥Ã¥¯¤Î¥¿¥¤¥à¥¢¥¦¥È¤Ï 60 ÉÃ (¥Þ¥¹¥«¥ì¡¼¥É¡¦¥¯¥é¥¤¥¢¥ó¥È¤Î # ICQ ¥æ¡¼¥¶¤Ï¡¢ ICQ ¤ÎÀßÄê¤ÎÃæ¤Ç¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥¿¥¤¥à¥¢¥¦¥ÈÃÍ¤ò # 30 ÉÃ¤Þ¤Çµö¤¹¤è¤¦¤Ë¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£) # /ipchains -M -S 7200 10 60 </verb>   <sect1>¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³¤ò¤·¤è¤¦¤È¤·¤Æ¤â¡¢ºÇ½é¤ÏÀÜÂ³¤Ç¤¤Þ¤»¤ó¡£ ¤â¤¦°ìÅÙ¤ä¤Ã¤Æ¤ß¤ë¤È¡¢ÌäÂê¤Ê¤¯Æ°ºî¤·¤Þ¤¹¡£¤Ê¤¼¤Ç¤·¤ç¤¦¤«?   ¤½¤ÎÍýÍ³¤Ï¡¢¤¢¤Ê¤¿¤¬Æ°Åª IP ¥¢¥É¥ì¥¹¤ò»È¤Ã¤Æ¤¤¤Æ¡¢ºÇ½é¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³¤ò ¤·¤è¤¦¤È¤·¤¿»þ¤Ë¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬¤Þ¤À¤½¤Î IP ¥¢¥É¥ì¥¹¤òÃÎ¤é¤Ê¤¤¤«¤é¤Ç¤¹¡£ ¤³¤Î²ò·èºö¤¬¤¢¤ê¤Þ¤¹¡£ /etc/rc.d/rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤Ë²¼µ¤ò²Ã¤¨¤Æ¤¯¤À¤µ¤¤ - <![ %codes CDATA [ <verb>  # ¥À¥¤¥Ê¥ß¥Ã¥¯ IP ¥æ¡¼¥¶¡¼ - # # SLIP ¤ä PPP, DHCP Åù¤«¤é IP ¥¢¥É¥ì¥¹¤ò¥À¥¤¥Ê¥ß¥Ã¥¯¤Ë¼õ¤±¼è¤Ã¤Æ # ¤¤¤ë¤Ê¤é¡¢°Ê²¼¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡¥¤³¤ì¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬ # Diald ¤äÆ±ÍÍ¤Ê¥×¥í¥°¥é¥à¤È°ì½ï¤Ë»È¤ï¤ì¤ë¤È¤¤Ë¥À¥¤¥Ê¥ß¥Ã¥¯IP ¥¢¥É¥ì¥¹ # ¤Î¥Ï¥Ã¥¥ó¥°¤ò¤ä¤ê°×¤¯¤·¤Þ¤¹¡¥ # Æ°Åª IP ¥æ¡¼¥¶ - # # SLIP ¤ä PPP, DHCP Åù¤«¤é IP ¥¢¥É¥ì¥¹¤òÆ°Åª¤Ë¼õ¤±¼è¤Ã¤Æ¤¤¤ë¤Ê¤é¡¢ # °Ê²¼¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¤³¤ì¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬ Diald ¤ä¤³¤ì¤ÈÆ±ÍÍ¤Ê¥×¥í¥°¥é¥à¤È°ì½ï¤Ë # »È¤ï¤ì¤ë»þ¤Ë¡¢Æ°Åª IP ¥¢¥É¥ì¥¹¤Î¥Ï¥Ã¥¥ó¥°¤ò¤ä¤ê°×¤¯¤·¤Þ¤¹¡£ # echo "1" > /proc/sys/net/ipv4/ip_dynaddr </verb> ]]> <verb> # Æ°Åª IP ¥æ¡¼¥¶ - # # SLIP ¤ä PPP, DHCP Åù¤«¤é IP ¥¢¥É¥ì¥¹¤òÆ°Åª¤Ë¼õ¤±¼è¤Ã¤Æ¤¤¤ë¤Ê¤é¡¢ # °Ê²¼¤Î¥ª¥×¥·¥ç¥ó¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ # ¤³¤ì¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬ Diald ¤ä¤³¤ì¤ÈÆ±ÍÍ¤Ê¥×¥í¥°¥é¥à¤È°ì½ï¤Ë # »È¤ï¤ì¤ë»þ¤Ë¡¢Æ°Åª IP ¥¢¥É¥ì¥¹¤Î¥Ï¥Ã¥¥ó¥°¤ò¤ä¤ê°×¤¯¤·¤Þ¤¹¡£ # echo "1" > /proc/sys/net/ipv4/ip_dynaddr </verb>  <label id="MTU-issues">  <sect1>( MTU ) - IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¤¦¤Þ¤¯Æ°ºî¤·¤Æ¤¤¤ë¤è¤¦¤Ë¸«¤¨¤Þ¤¹¡£ ¤·¤«¤·¡¢¤¤¤¯¤Ä¤«¤Î¥µ¥¤¥È¤Ç¤ÏÆ°ºî¤·¤Þ¤»¤ó¡£ ¤³¤ì¤Ï¡¢ÄÌ¾ï WWW ¤È FTP ¤Çµ¯¤³¤ê¤Þ¤¹¡£  ¤³¤Î¸¶°ø¤Ï 2 ¤Ä¹Í¤¨¤é¤ì¤Þ¤¹¡£1 ¤ÄÌÜ¤ÏÈó¾ï¤Ë°ìÈÌÅª¤Ç¤¹¤¬¡¢2 ¤ÄÌÜ¤ÏÈó¾ï¤Ë´õ¤Ç¤¹¡£ <itemize>  <item> 2.0.38 ¤È 2.2.9 °Ê¹ß¤Î Linux¥«¡¼¥Í¥ë¤Ç¡¢¥Þ¥¹¥«¥ì¡¼¥É¡¦¥³¡¼¥É¤ÎÃæ¤ËµÄÏÀ¤Î¤¢¤ë¥Ð¥°¤¬¤¢¤ê¤Þ¤¹¡£   ¥æ¡¼¥¶¤ÎÃæ¤Ë¤Ï¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬ DF ¤¹¤Ê¤ï¤Á¡ÖÃÇÊÒ²½¤·¤Ê¤¤ (Don't Fragment)¡×¥Ó¥Ã¥È¤¬¥»¥Ã¥È¤µ¤ì¤Æ¤¤¤ë¥Ñ¥±¥Ã¥È¤Ë´Ø¤·¤ÆÌäÂê¤ò Êú¤¨¤Æ¤¤¤ë¤«¤âÃÎ¤ì¤Ê¤¤¡¢¤È¤¤¤¦»ö¼Â¤ò»ØÅ¦¤¹¤ë¿Í¤â¤¤¤Þ¤¹¡£ ´ðËÜÅª¤Ë¡¢¥Þ¥¹¥«¥ì¡¼¥É¡¦¥Ü¥Ã¥¯¥¹¤¬¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë 1500 Ì¤Ëþ¤Î MTU ¤Ç ÀÜÂ³¤·¤¿¾ì¹ç¤Ë¤Ï¡¢´ö¤Ä¤«¤Î¥Ñ¥±¥Ã¥È¤Ë¤Ï DF ¥Õ¥£¡¼¥ë¥É¤¬¥»¥Ã¥È¤µ¤ì¤ë¤Ç¤·¤ç¤¦¡£ Linux ¥Ü¥Ã¥¯¥¹¤Î MTU ¤ò 1500 ¤ØÊÑ¹¹¤¹¤ë¤³¤È¤Ç¤³¤ÎÌäÂê¤ò²ò·è¤·¤¿¤è¤¦¤Ë ¸«¤¨¤Þ¤¹¤¬¡¢¥Ð¥°¤Ï¤Þ¤À¾Ã¤¨¤¿¤ï¤±¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó¡£ µ¯¤³¤Ã¤Æ¤¤¤ë¤È¹Í¤¨¤é¤ì¤ë¤³¤È¤Ï¡¢¥Þ¥¹¥«¥ì¡¼¥É¡¦¥³¡¼¥É¤¬ ICMP 3 Sub 4 ¥³¡¼¥É¤ò ÉÕ¤±¤ÆÊÖ¤Ã¤Æ¤¤¿ ICMP ¥Ñ¥±¥Ã¥È¤òÅ¬ÀÚ¤Ë½ñ¤Ä¾¤·¤Æ¡¢¥È¥é¥Õ¥£¥Ã¥¯¤òÈ¯¹Ô¤·¤¿ ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥¯¥é¥¤¥¢¥ó¥È¤ËÊÖ¤·¤Æ¤¤¤Ê¤¤¤È¤¤¤¦¤³¤È¤Ç¤¹¡£ ¤³¤Î¤¿¤á¤Ë¡¢¥Ñ¥±¥Ã¥È¤ÏÍî¤È¤µ¤ì¤Þ¤¹¡£   °ìÊý¡¢Â¾¤Î¥æ¡¼¥¶¤Ï¤½¤ÎÌäÂê¤¬µ¯¤¤ë±ó³Ö¤Î¥µ¥¤¥È (Åµ·¿Åª¤Ë¤Ï SSL ÀÜÂ³¤Î¥µ¥¤¥ÈÅù) ¤Î´ÉÍý¼Ô¤Î¤»¤¤¤À¤È»ØÅ¦¤·¤Þ¤¹¡£ Èà¤é¤¬¥»¥¥å¥ê¥Æ¥£ÊÐ¼¹ÉÂ¤Ç¡¢ (Type4 - É¬Í×¤È¤µ¤ì¤ë¥Õ¥é¥°¥á¥ó¥È - ¤ò´Þ¤à) Á´¼ïÎà¤Î ICMP ¥á¥Ã¥»¡¼¥¸¤ò½üµî¤·¤Æ¤¤¤ë¤Î¤Ç¡¢¤³¤ì¤Ï TCP/IP ¥×¥í¥È¥³¥ë¤Î ´ðËÜ¸¶Â§¤ò²õ¤·¤Æ¤¤¤ë¤È¸À¤¦¤Î¤Ç¤¹¡£   ÁÐÊý¤Î¼çÄ¥¤â³Æ¡¹°ìÍý¤¢¤ê¤Þ¤¹¡£ ¤½¤·¤Æ¡¢³Æ¡¹¤Î¥°¥ë¡¼¥×¤Ïº£Æü¤Þ¤ÇÆ¤µÄ¤·Â³¤±¤Æ¤¤¤Þ¤¹¡£ ¤â¤·¡¢¤¢¤Ê¤¿¤¬¥Í¥Ã¥È¥ï¡¼¥¯¤Î¥×¥í¥°¥é¥Þ¤Ç¡¢¤³¤ÎÌäÂê¤ò²ò·è°¿¤Ï¿äÂ¬¤Ç¤¤ë¤Ê¤é¡¢ ¤ä¤Ã¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ ¾Ü¤·¤¯¤Ï <htmlurl url="http://www.tux.org/hypermail/linux-kernel/1999week10/0124.html" name="MTU Thread from the Linux-Kernel"> ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£   ¤Ç¤â¿´ÇÛ¤Ï¤¢¤ê¤Þ¤»¤ó¡£ ´°Á´¤Ç¤è¤¤ÂÐ½èË¡¤Ï¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥ê¥ó¥¯¤Î MTU ¤ò 1500 ¤ËÊÑ¹¹¤¹¤ë¤³¤È¤Ç¤¹¡£ º£¡¢¥æ¡¼¥¶¤ÎÃæ¤Ë¤Ï TELNET ¤ä¥²¡¼¥àÅù¤Î±þÅú»þ´Ö¤ËÉÒ´¶¤Ê¥×¥í¥°¥é¥à¤Ë °¤¤¤È¸À¤Ã¤Æ¤³¤ì¤Ëí´í°¤¹¤ë¿Í¤â¤¤¤Þ¤¹¤¬¡¢±Æ¶Á¤Ï¤Û¤ó¤Î¾¯¤·¤Ç¤¹¡£ ·Ú¤¤¥µ¥¤¥È¤Ç¤ÏËØ¤É¤Î HTTP ¤ä FTP ¥È¥é¥Õ¥£¥Ã¥¯¤¬¹âÂ®¤Ë¤Ê¤ê¤Þ¤¹!  [ -- DSL ¤Þ¤¿¤Ï¥±¡¼¥Ö¥ë¡¦¥â¥Ç¥à¤Î¤¿¤á¤Ë PPPoE ÀÜÂ³¤ò¹Ô¤Ã¤Æ¤¤¤ë¤«¡¢MTU ¤ò 1500 ¤ËÊÑ¹¹¤·¤Ê¤¤¤³¤È¤Ë·è¤á¤¿¾ì¹ç¤Ï¡¢°Ê²¼¤ÎÊÌ¤Î²ò·èË¡¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£ -- ]   ¤³¤ì¤ò²ò·è¤¹¤ë°Ù¤Ë¡¢ºÇ½é¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥ê¥ó¥¯ÍÑ MTU ¤¬º£¤É¤¦¤Ê¤Ã¤Æ¤¤¤ë¤«¤ò ¸«¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤Î°Ù¤Ë¤Ï "/bin/ifconfig" ¤ò¼Â¹Ô¤·¤Þ¤¹¡£ ¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³¤ËÁêÅö¤¹¤ë¥é¥¤¥ó¤ò¸«¤Æ¡¢ MTU ¤òÁÜ¤·¤Þ¤¹¡£ ¤³¤ì¤Ï 1500 ¤Ë¥»¥Ã¥È¤µ¤ì¤Æ¤¤¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ÄÌ¾ï¡¢¥¤¡¼¥µ¥Í¥Ã¥È¡¦¥ê¥ó¥¯¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç¤³¤ì¤Ë¤Ê¤ê¤Þ¤¹¤¬¡¢¥·¥ê¥¢¥ëÀÜÂ³¤Î PPP ¥ê¥ó¥¯¤Ï¥Ç¥Õ¥©¥ë¥È¤Ç 576 ¤Ë¤Ê¤ë¤Ç¤·¤ç¤¦¡£ </itemize>  <sect2> PPP ¥ê¥ó¥¯¤Î MTU ¤ÎÊÑ¹¹ - <itemize>   <item>PPP ¥ê¥ó¥¯¤Î MTU ¤ÎÌäÂê¤ò²ò·è¤¹¤ë¤Ë¤Ï¡¢/etc/ppp/options ¥Õ¥¡¥¤¥ë¤ò ÊÔ½¸¤·¡¢¾å¤ÎÊý¤ËÊÌ¡¹¤Ê 2 ¹Ô "mtu 1500" ¤È "mru 1500" ¤ò²Ã¤¨¤Þ¤¹¡£ ¿·¤·¤¤ÊÑ¹¹¤òÊÝÂ¸¤·¡¢PPP ¤òºÆµ¯Æ°¤·¤Æ¤¯¤À¤µ¤¤¡£ ¾å¤Ë½ñ¤¤¤¿¤ä¤ê¤«¤¿¤Ç PPP ¥ê¥ó¥¯¤¬Àµ¤·¤¤ MTU ¤È MRU ¤Ë¤Ê¤Ã¤Æ¤¤¤ë¤³¤È¤ò ³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£   <item>DSL ¤ä¥±¡¼¥Ö¥ë¥â¥Ç¥àÅù¤Ë¥Ö¥ê¥Ã¥¸ÀÜÂ³¤ä¥ë¡¼¥¿ÀÜÂ³¤µ¤ì¤¿É¸½à¤Î ¥¤¡¼¥µ¥Í¥Ã¥È¡¦¥ê¥ó¥¯¾å¤Ç MTU ÌäÂê¤ò²ò·è¤¹¤ë¤¿¤á¤Ë¤Ï¡¢»È¤Ã¤Æ¤¤¤ë Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ç¤ÎÀµ¤·¤¤¥Í¥Ã¥È¥ï¡¼¥¯½é´ü²½¥¹¥¯¥ê¥×¥È¤ò ÊÔ½¸¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ <htmlurl url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - Section 16"> ¤Ë¤¢¤ë¥Í¥Ã¥È¥ï¡¼¥¯ºÇÅ¬²½¤Î°Ù¤ÎÊ¸½ñ¤ò ¸«¤Æ¤¯¤À¤µ¤¤¡£ </itemize>  <sect2>¸Å¤¤ UNIX ¤Î¥·¥ê¥¢¥ë¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹ - <itemize>   <item>ºÇ¸å¤Ë¡¢¤³¤ì¤Ï¶¦ÄÌ¤ÎÌäÂê¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó¤¬¡¢¤³¤ì¤«¤éµ¤¹²ò·èË¡¤¬ Åö¤Æ¤Ï¤Þ¤ë¿Í¤âÃæ¤Ë¤Ï¤¤¤Þ¤¹¡£ PPP ¥æ¡¼¥¶¤Î¾ì¹ç¡¢¤É¤Î¥Ý¡¼¥È¤Ë PPPd ¥³¡¼¥É¤¬ÀÜÂ³¤µ¤ì¤Æ¤¤¤ë¤«³ÎÇ§¤·¤Þ¤¹¡£ ¤½¤ì¤Ï /dev/cua* ¥Ý¡¼¥È¤Ç¤¹¤«? ¤½¤ì¤È¤â /dev/ttyS* ¥Ý¡¼¥È¤Ç¤¹¤«? ¤³¤ì¤Ï /dev/ttyS* ¥Ý¡¼¥È¤Ç¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ cua ¥¹¥¿¥¤¥ë¤Ï²áµî¤Î¤â¤Î¤Ç¡¢Èó¾ï¤Ë´ñÌ¯¤ÊÊýË¡¤Ç¤¤¤¯¤Ä¤«¤Î¤â¤Î¤ò²õ¤·¤Þ¤¹¡£ </itemize>  <sect2>PPPoE ¥æ¡¼¥¶ -   PPPoE (ºÇÂç MTU ¤È¤·¤Æ 1490 ¤òÍ×µá¤·¤Þ¤¹) ¤ò»ÈÍÑ¤¹¤ë¥æ¡¼¥¶¡¢°¿¤Ï MTU ¤ò 1500 ¤Ë¤·¤Ê¤¤¤³¤È¤Ë·è¤á¤¿¥æ¡¼¥¶¤Î°Ù¤Î²ò·èË¡¤ò½ñ¤¤Þ¤¹¡£ Á´¤Æ¤Î¥Þ¥¹¥«¥ì¡¼¥É¡¦¥¯¥é¥¤¥¢¥ó¥È PC ¤Î MTU ¤ÎÃÍ¤ò³°Éô¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥ê¥ó¥¯¤Î MTU ¤ÈÆ±¤¸ÃÍ¤ËÀßÄê¤¹¤ì¤Ð¡¢¤¦¤Þ¤¯Æ°ºî¤¹¤ë¤Ç¤·¤ç¤¦¡£ PPPoE ISP ¤ÎÃæ¤Ë¤ÏÀµ¤·¤¯ÀÜÂ³¤¹¤ë¤¿¤á¤Ë 1460 ¤Î MTU ¤òÍ×µá¤¹¤ë½ê¤â¤¢¤ë¤«¤â ÃÎ¤ì¤Þ¤»¤ó¤Î¤Ç¡¢Ãí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£  ¤É¤¦¤ä¤Ã¤Æ¤³¤ì¤ò¤¹¤ë¤«¤Ï¡¢°Ê²¼¤Î³Æ¥ª¥Ú¥ì¡¼¥Æ¥£¥ó¥°¡¦¥·¥¹¥Æ¥àÍÑ¤ÎÃ±½ã¤Ê¥¹¥Æ¥Ã¥×¤Ë½¾¤Ã¤Æ¤¯¤À¤µ¤¤¡£   ¼¡¤ÎÎã¤Ï¡¢¤¢¤ë DSL µÚ¤Ó¥±¡¼¥Ö¥ë¥â¥Ç¥à¥æ¡¼¥¶¤Î°Ù¤Î¡¢Åµ·¿Åª¤Ê PPPoE ÀÜÂ³ÍÑ¤Î MTU ¤¬ 1490 ¤ÎÎã¤ò¼¨¤·¤Þ¤¹¡£ 128Kb/s °Ê¾å¤ÎÀÜÂ³¤Î¾ì¹ç¤ÏÁ´¤Æ¡¢²ÄÇ½¤Ê¸Â¤êÂç¤¤ÊÃÍ¤ò»ÈÍÑ¤¹¤ë¤³¤È¤ò¿ä¾©¤·¤Þ¤¹¡£  ¤è¤ê¾®¤µ¤Ê MTU ¤ò»ÈÍÑ¤¹¤ëÍ£°ì¤Î¼ÂºÝ¤ÎÍýÍ³¤Ï¡¢½èÍýÇ½ÎÏ¤òµ¾À·¤Ë¤·¤Æ¤Ç¤â ¤è¤êÁá¤¤±þÅú»þ´Ö¤òÆÀ¤¿¤¤¤È¤¤Ç¤¹¡£ ¤³¤Î¥È¥Ô¥Ã¥¯¤Ë¤Ä¤¤¤Æ¤Î¾ÜºÙ¤Ï°Ê²¼¤ò¸«¤Æ¤¯¤À¤µ¤¤ - <htmlurl url="http://www.ecst.csuchico.edu/~dranch/PPP/ppp-performance.html#mtu" name="http://www.ecst.csuchico.edu/~dranch/PPP/ppp-performance.html#mtu">   *** ¤¦¤Þ¤¯¤¤¤Ã¤¿¤È¤«¡¢¤¤¤«¤Ê¤«¤Ã¤¿¤È¤«¡¢°¿¤ÏÂ¾¤Î OS ¤Ç¤Î¤ä¤êÊý¤ò *** ÃÎ¤Ã¤Æ¤¤¤ë¤Ê¤é¡¢ David Ranch Ëø¥á¡¼¥ë¤òÁ÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£¤è¤í¤·¤¯! <sect2>Linux: <![ %codes CDATA [ <code>  1¡¥MTU ¤Î¥»¥Ã¥Æ¥£¥ó¥°¤Ï Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ë¤è¤ê°Û¤Ê¤ê¤Þ¤¹¡£ Redhat¤Ç¤Ï - /sbin/ifup ¥¹¥¯¥ê¥×¥È¤ÎÃæ¤ÎÍÍ¡¹¤Ê¡Ö ifconfig ¡×¥¹¥Æ¡¼¥È¥á¥ó¥È¤ò ÊÔ½¸¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ Slackware¤Ç¤Ï - /etc/rc.d/rc1.inet ¤ÎÃæ¤ÎÍÍ¡¹¤Ê¡Ö ifconfig ¡×¥¹¥Æ¡¼¥È¥á¥ó¥È ¤òÊÔ½¸¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ 1. MTU ¤ÎÀßÄê¤Ï Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ë¤è¤ê°Û¤Ê¤ê¤Þ¤¹¡£ Redhat¤Ç¤Ï - /sbin/ifup ¥¹¥¯¥ê¥×¥È¤ÎÃæ¤ÎÍÍ¡¹¤Ê "ifconfig" ¤Î¹Ô¤ò ÊÔ½¸¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ Slackware¤Ç¤Ï - /etc/rc.d/rc1.inet ¤ÎÃæ¤ÎÍÍ¡¹¤Ê "ifconfig" ¤Î¹Ô¤ò ÊÔ½¸¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£  2¡¥¤³¤³¤Ë¡¢¤É¤Î¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ç¤âÆ¯¤¯ÎÉ¤¤Îã¤¬¤¢¤ê¤Þ¤¹¡£/etc/rc.d/rc.local ¡¡ ¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤·¡¢¥Õ¥¡¥¤¥ë¤ÎºÇ¸å¤Ë°Ê²¼¤Î¹Ô¤òÉÕ¤±²Ã¤¨¤Þ¤¹¡£ echo "Changing the MTU of ETH0" /sbin/ifconfig eth0 mtu 1490 "eth0" ¤Ï¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤µ¤ì¤¿¥Þ¥·¥ó¤Î¾åÎ®Â¦¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾ ¤ËÃÖ¤´¹¤¨¤Þ¤¹¡£ 2. ¤³¤³¤Ë¡¢¤É¤Î¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ç¤âÆ¯¤¯ÎÉ¤¤Îã¤¬¤¢¤ê¤Þ¤¹¡£ /etc/rc.d/rc.local ¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤·¡¢¥Õ¥¡¥¤¥ë¤ÎºÇ¸å¤Ë°Ê²¼¤Î¹Ô¤ò ÉÕ¤±²Ã¤¨¤Þ¤¹ - echo "Changing the MTU of ETH0" /sbin/ifconfig eth0 mtu 1490 "eth0" ¤Ï¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤µ¤ì¤¿¥Þ¥·¥ó¤Î¾åÎ®Â¦¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾¤Ë ÃÖ¤´¹¤¨¤Þ¤¹¡£  3¡¥¡Ö TCP ¼õ¿®¥¦¥¤¥ó¥É¥¦ (TCP Receive Windows) ¡×¤Î¤è¤¦¤Ê¹âÅÙ¤Ê¥ª¥×¥·¥ç¥ó ¤ä¡¢ÆÃÄê¤Î Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥óÍÑ¤Ë¤É¤Î¤è¤¦¤Ë¤·¤Æ¤½¤ì¤¾¤ì¤Î ¥Í¥Ã¥È¥ï¡¼¥¥ó¥°¡¦¥¹¥¯¥ê¥×¥È¤òÊÔ½¸¤¹¤ë¤Î¤«¤Ê¤É¤Î¾Ü¤·¤¤Îã¤Ï ¡¡¡¡http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#trinityos ¤Î ¡¡¡¡16¾Ï¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£ 3. "TCP ¼õ¿®¥¦¥¤¥ó¥É¥¦" (TCP Receive Windows) ¤Î¤è¤¦¤Ê¹âÅÙ¤Ê¥ª¥×¥·¥ç¥ó¤ä¡¢ ÆÃÄê¤Î Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥óËè¤Î¥Í¥Ã¥È¥ï¡¼¥¥ó¥°¡¦¥¹¥¯¥ê¥×¥È¤Î ÊÔ½¸ÊýË¡Åù¤Î¾Ü¤·¤¤Îã¤Ï¡¢ <htmlurl url=" http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#trinityos"> ¤Î16¾Ï¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£  </code> ]]> <code> 1. MTU ¤ÎÀßÄê¤Ï Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ë¤è¤ê°Û¤Ê¤ê¤Þ¤¹¡£ Redhat¤Ç¤Ï - /sbin/ifup ¥¹¥¯¥ê¥×¥È¤ÎÃæ¤ÎÍÍ¡¹¤Ê "ifconfig" ¤Î¹Ô¤ò ÊÔ½¸¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ Slackware¤Ç¤Ï - /etc/rc.d/rc1.inet ¤ÎÃæ¤ÎÍÍ¡¹¤Ê "ifconfig" ¤Î¹Ô¤ò ÊÔ½¸¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ 2. ¤³¤³¤Ë¡¢¤É¤Î¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ç¤âÆ¯¤¯ÎÉ¤¤Îã¤¬¤¢¤ê¤Þ¤¹¡£ /etc/rc.d/rc.local ¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤·¡¢¥Õ¥¡¥¤¥ë¤ÎºÇ¸å¤Ë°Ê²¼¤Î¹Ô¤ò ÉÕ¤±²Ã¤¨¤Þ¤¹ - echo "Changing the MTU of ETH0" /sbin/ifconfig eth0 mtu 1490 "eth0" ¤Ï¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤µ¤ì¤¿¥Þ¥·¥ó¤Î¾åÎ®Â¦¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾¤Ë ÃÖ¤´¹¤¨¤Þ¤¹¡£ 3. "TCP ¼õ¿®¥¦¥¤¥ó¥É¥¦" (TCP Receive Windows) ¤Î¤è¤¦¤Ê¹âÅÙ¤Ê¥ª¥×¥·¥ç¥ó¤ä¡¢ ÆÃÄê¤Î Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥óËè¤Î¥Í¥Ã¥È¥ï¡¼¥¥ó¥°¡¦¥¹¥¯¥ê¥×¥È¤Î ÊÔ½¸ÊýË¡Åù¤Î¾Ü¤·¤¤Îã¤Ï¡¢ </code> <tscreen> <htmlurl url=" http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#trinityos"> </tscreen> <code> ¤Î16¾Ï¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£ </code> <sect2>MS Windows 95 - <![ %codes CDATA [ <code>  1¡¥ ¥ì¥¸¥¹¥È¥ê¤Ë¤É¤ó¤ÊÊÑ¹¹¤ò²Ã¤¨¤ë¤³¤È¤âÈó¾ï¤Ë´í¸±¤Ç¤¹¡£°ÂÁ´¤Î¤¿¤á¤ËÉ¬¤º¥Ð¥Ã¥¯ ¡¡¡¡¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡¥¼«Ê¬¼«¿È¤Î¥ê¥¹¥¯¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ 1. ¥ì¥¸¥¹¥È¥ê¤Ë¤É¤ó¤ÊÊÑ¹¹¤ò²Ã¤¨¤ë¤³¤È¤âÈó¾ï¤Ë´í¸±¤Ç¤¹¡£°ÂÁ´¤Î¤¿¤á¤ËÉ¬¤º¥Ð¥Ã¥¯ ¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¼«¸ÊÀÕÇ¤¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ Run-->RegEdit --> 2¡¥¡Ö¥¹¥¿¡¼¥È¡× ¢ª ¡Ö Run (¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô)¡× ¢ª ¡Ö RegEdit ¡×¤ÈÆþÎÏ 2. [¥¹¥¿¡¼¥È] ¢ª [¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô(R)] ¢ª "RegEdit" ¤ÈÆþÎÏ¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¤³¤³¤Î¹àÌÜ¤ÏÆüËÜ¸ì Windows 95 ¤ÎÉ½¼¨ÆâÍÆ¤ò»²¾È¤·¤Æ¤¤¤Þ¤¹¡£¡Û  Export Registry File-->Save a copy of your registry" would only do Registry MERGES and NOT do a replacement. --> 3¡¥²¿¤«¤¹¤ëÁ°¤Ë¥ì¥¸¥¹¥È¥ê¤Î¥Ð¥Ã¥¯¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤òºî¤ë¤Ù¤¤Ç¤¹¡£¤ä¤ê¤«¤¿¤Ï ¡ïWINDOWS ¥Õ¥©¥ë¥À¤Ë¤¢¤ë "user.dat" ¤È "system.dat" ¥Õ¥¡¥¤¥ë¤ò°ÂÁ´¤Ê¾ì½ê ¤Ë¥³¥Ô¡¼¤·¤ÆÆþ¤ì¤Æ¤ª¤¤Þ¤¹¡£ ¡¡¡¡°ÊÁ°¤Ë¸ÀµÚ¤µ¤ì¤¿ÊýË¡¡Ö Regedit ¡×¾å¤Ç¡Ö Registry ¡×¢ª ¡Ö Export Registry ¡× ¡Ö File ¡× ¢ª ¡Ö Save a copy of your registry ¡× ¤Ï¥ì¥¸¥¹¥È¤ê¡¼¤òÃ±¤Ë¥Þ¡¼¥¸ ¤¹¤ë¤À¤±¤Ç¤¢¤Ã¤Æ¡¢ÃÖ´¹¤ò¤¹¤ë¤ï¤±¤Ç¤ÏÌµ¤¤¤È¸À¤¦¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ 3. ºî¶ÈÁ°¤Ë¤Ï¥ì¥¸¥¹¥È¥ê¤Î¥Ð¥Ã¥¯¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ÊýË¡¤Ï¡¢¥¨¥¯¥¹¥×¥í¡¼¥éÅù¤Ç \WINDOWS ¥Ç¥£¥ì¥¯¥È¥ê¤Ë¤¢¤ë "user.dat" ¤È "system.dat" ¥Õ¥¡¥¤¥ë¤ò°ÂÁ´¤Ê¾ì½ê¤Ë¥³¥Ô¡¼¤·¤Æ¤ª¤¤Þ¤¹¡£ °ÊÁ°¤Ë½Ò¤Ù¤¿ÊýË¡¤Ç¤¢¤ë¡¢ "Regedit ¾å¤Ç [¥ì¥¸¥¹¥È¥ê(R)]¢ª[¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î½ñ¤½Ð¤·(E)] [¥ì¥¸¥¹¥È¥ê¤Î½ñ¤½Ð¤·]¥¦¥£¥ó¥É¥¦¾å¤Ç [¥Õ¥¡¥¤¥ëÌ¾(N)]¢ª[ÊÝÂ¸(S)]" ¤Ï¡¢¥ì¥¸¥¹¥È¥ê¤òÃ±¤Ë¥Þ¡¼¥¸¤¹¤ë¤À¤±¤Ç¤¢¤Ã¤Æ¡¢ÃÖ´¹¤ò¤¹¤ëÌõ¤Ç¤Ï¤Ê¤¤¤È¤¤¤¦ ¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£  4¡¥"n" ¤Ç½ªÎ»¤¹¤ë¥ì¥¸¥¹¥È¥ê¥Ä¥ê¡¼¤Î³Æ¡¹¤òÃµº÷¤·¤Þ¤¹¡£ (Îã¤¨¤Ð0007)¡¡ ¡¡¡¡NIC ¤Î IP ¥¢¥É¥ì¥¹¤ò»ý¤Ã¤¿¡Ö IPAddress ¡×¤È¸Æ¤Ð¤ì¤ë¥ì¥¸¥¹¥È¥ê¡¦ ¡¡¡¡¥¨¥ó¥È¥ê¡¼¤¬¤¢¤ê¤Þ¤¹¡£¤½¤Î¥¡¼¤Î²¼¤Ë¡¢²¼µ¤ò²Ã¤¨¤Æ¤¯¤À¤µ¤¤ - http://support.microsoft.com/support/kb/articles/q158/4/74.asp ¤«¤é [Hkey_Local_Machine\System\CurrentControlset\Services\Class\NetTrans\000n] type=DWORD name="MaxMTU" (quotesµ¹æ¤Ï´Þ¤á¤Ê¤¤) value=1490 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï´Þ¤á¤Ê¤¤) type=DWORD name="MaxMSS" (quotesµ¹æ¤Ï´Þ¤á¤Ê¤¤) value=1450 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï´Þ¤á¤Ê¤¤) 4. "n" ¤Ç½ªÎ»¤¹¤ë¥ì¥¸¥¹¥È¥ê¥Ä¥ê¡¼¤Î³Æ¡¹¤òÃµº÷¤·¤Þ¤¹¡£ (Îã¤¨¤Ð0007)¡¡ NIC ¤Î IP ¥¢¥É¥ì¥¹¤ò»ý¤Ã¤¿ "IPAddress" ¤È¤¤¤¦¥ì¥¸¥¹¥È¥ê¥¨¥ó¥È¥ê¤¬ ¤¢¤ê¤Þ¤¹¡£ ¤½¤Î¥¡¼¤Î²¼¤Ë¡¢²¼µ¤ò²Ã¤¨¤Æ¤¯¤À¤µ¤¤ - <htmlurl url="http://support.microsoft.com/support/kb/articles/q158/4/74.asp"> ¤«¤é [Hkey_Local_Machine\System\CurrentControlset\Services\Class\NetTrans\000n] type=DWORD name="MaxMTU" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=1490 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) type=DWORD name="MaxMSS" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=1450 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤)  5¡¥"TCP Receive Window" (TCP ¼õ¿®¥¦¥¤¥ó¥É¥¦) ¤òÊÑ¤¨¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ ¤³¤ì¤Ï»þ¤Ë¤Ï¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀÇ½¤ò¤«¤Ê¤ê¤Ë¸þ¾å¤µ¤»¤Þ¤¹¡£ ¤â¤·¥¹¥ë¡¼¥×¥Ã¥È¤¬°¤¯¤Ê¤Ã¤¿¤È¤ï¤«¤Ã¤¿¤é¤³¤ì¤é¤Î¹àÌÜ¤ò¸µ¤ÎÃÍ¤Ë Ìá¤·¤Æ¤«¤é¥ê¥Ö¡¼¥È¤·¤Æ¤¯¤À¤µ¤¤¡£ [HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\MSTCP] type=DWORD name="DefaultRcvWindow" (quotesµ¹æ¤Ï´Þ¤á¤Ê¤¤) value=32768 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï´Þ¤á¤Ê¤¤) type=DWORD name="DefaultTTL" (quotesµ¹æ¤Ï´Þ¤á¤Ê¤¤) value=128 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï´Þ¤á¤Ê¤¤) 5. "TCP Receive Window" (TCP ¼õ¿®¥¦¥¤¥ó¥É¥¦) ¤âÊÑ¹¹¤Ç¤¤Þ¤¹¡£ ¤³¤ì¤Ï»þ¤È¤·¤Æ¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀÇ½¤ò¤«¤Ê¤ê¸þ¾å¤µ¤»¤ë¤³¤È¤â¤¢¤ê¤Þ¤¹¡£ ¤â¤·¥¹¥ë¡¼¥×¥Ã¥È¤¬°¤¯¤Ê¤Ã¤¿¤È¤ï¤«¤Ã¤¿¤é¡¢¤³¤ì¤é¤Î¹àÌÜ¤ò¸µ¤ÎÃÍ¤Ë Ìá¤·¤Æ¤«¤é¥ê¥Ö¡¼¥È¤·¤Æ¤¯¤À¤µ¤¤¡£ [HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\MSTCP] type=DWORD name="DefaultRcvWindow" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=32768 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) type=DWORD name="DefaultTTL" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=128 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤)  6¡¥ ºÆµ¯Æ°¤·¤ÆÊÑ¹¹¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ 6. ºÆµ¯Æ°¤·¤ÆÊÑ¹¹¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ </code> ]]> <code> 1. ¥ì¥¸¥¹¥È¥ê¤Ë¤É¤ó¤ÊÊÑ¹¹¤ò²Ã¤¨¤ë¤³¤È¤âÈó¾ï¤Ë´í¸±¤Ç¤¹¡£°ÂÁ´¤Î¤¿¤á¤ËÉ¬¤º¥Ð¥Ã¥¯ ¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¼«¸ÊÀÕÇ¤¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ 2. [¥¹¥¿¡¼¥È] ¢ª [¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô(R)] ¢ª "RegEdit" ¤ÈÆþÎÏ¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¤³¤³¤Î¹àÌÜ¤ÏÆüËÜ¸ì Windows 95 ¤ÎÉ½¼¨ÆâÍÆ¤ò»²¾È¤·¤Æ¤¤¤Þ¤¹¡£¡Û 3. ºî¶ÈÁ°¤Ë¤Ï¥ì¥¸¥¹¥È¥ê¤Î¥Ð¥Ã¥¯¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ÊýË¡¤Ï¡¢¥¨¥¯¥¹¥×¥í¡¼¥éÅù¤Ç \WINDOWS ¥Ç¥£¥ì¥¯¥È¥ê¤Ë¤¢¤ë "user.dat" ¤È "system.dat" ¥Õ¥¡¥¤¥ë¤ò°ÂÁ´¤Ê¾ì½ê¤Ë¥³¥Ô¡¼¤·¤Æ¤ª¤¤Þ¤¹¡£ °ÊÁ°¤Ë½Ò¤Ù¤¿ÊýË¡¤Ç¤¢¤ë¡¢ "Regedit ¾å¤Ç [¥ì¥¸¥¹¥È¥ê(R)]¢ª[¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î½ñ¤½Ð¤·(E)] [¥ì¥¸¥¹¥È¥ê¤Î½ñ¤½Ð¤·]¥¦¥£¥ó¥É¥¦¾å¤Ç [¥Õ¥¡¥¤¥ëÌ¾(N)]¢ª[ÊÝÂ¸(S)]" ¤Ï¡¢¥ì¥¸¥¹¥È¥ê¤òÃ±¤Ë¥Þ¡¼¥¸¤¹¤ë¤À¤±¤Ç¤¢¤Ã¤Æ¡¢ÃÖ´¹¤ò¤¹¤ëÌõ¤Ç¤Ï¤Ê¤¤¤È¤¤¤¦ ¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ 4. "n" ¤Ç½ªÎ»¤¹¤ë¥ì¥¸¥¹¥È¥ê¥Ä¥ê¡¼¤Î³Æ¡¹¤òÃµº÷¤·¤Þ¤¹¡£ (Îã¤¨¤Ð0007)¡¡ NIC ¤Î IP ¥¢¥É¥ì¥¹¤ò»ý¤Ã¤¿ "IPAddress" ¤È¤¤¤¦¥ì¥¸¥¹¥È¥ê¥¨¥ó¥È¥ê¤¬ ¤¢¤ê¤Þ¤¹¡£ ¤½¤Î¥¡¼¤Î²¼¤Ë¡¢²¼µ¤ò²Ã¤¨¤Æ¤¯¤À¤µ¤¤ - </code> <tscreen> <htmlurl url="http://support.microsoft.com/support/kb/articles/q158/4/74.asp"> ¤«¤é </tscreen> <code> [Hkey_Local_Machine\System\CurrentControlset\Services\Class\NetTrans\000n] type=DWORD name="MaxMTU" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=1490 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) type=DWORD name="MaxMSS" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=1450 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) 5. "TCP Receive Window" (TCP ¼õ¿®¥¦¥¤¥ó¥É¥¦) ¤âÊÑ¹¹¤Ç¤¤Þ¤¹¡£ ¤³¤ì¤Ï»þ¤È¤·¤Æ¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀÇ½¤ò¤«¤Ê¤ê¸þ¾å¤µ¤»¤ë¤³¤È¤â¤¢¤ê¤Þ¤¹¡£ ¤â¤·¥¹¥ë¡¼¥×¥Ã¥È¤¬°¤¯¤Ê¤Ã¤¿¤È¤ï¤«¤Ã¤¿¤é¡¢¤³¤ì¤é¤Î¹àÌÜ¤ò¸µ¤ÎÃÍ¤Ë Ìá¤·¤Æ¤«¤é¥ê¥Ö¡¼¥È¤·¤Æ¤¯¤À¤µ¤¤¡£ [HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\MSTCP] type=DWORD name="DefaultRcvWindow" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=32768 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) type=DWORD name="DefaultTTL" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=128 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) 6. ºÆµ¯Æ°¤·¤ÆÊÑ¹¹¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ </code> <sect2>MS Windows 98 - <![ %codes CDATA [ <code>  1¡¥¥ì¥¸¥¹¥È¥ê¤Ë¤É¤ó¤ÊÊÑ¹¹¤ò²Ã¤¨¤ë¤³¤È¤âÈó¾ï¤Ë´í¸±¤Ç¤¹¡£°ÂÁ´¤Î¤¿¤á¤ËÉ¬¤º¥Ð¥Ã¥¯ ¡¡ ¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡¥¼«Ê¬¼«¿È¤Î¥ê¥¹¥¯¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ 1. ¥ì¥¸¥¹¥È¥ê¤Ë¤É¤ó¤ÊÊÑ¹¹¤ò²Ã¤¨¤ë¤³¤È¤âÈó¾ï¤Ë´í¸±¤Ç¤¹¡£°ÂÁ´¤Î¤¿¤á¤ËÉ¬¤º¥Ð¥Ã¥¯ ¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¼«¸ÊÀÕÇ¤¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ Run-->RegEdit --> 2¡¥¡Ö¥¹¥¿¡¼¥È¡× ¢ª ¡Ö Run (¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô)¡× ¢ª ¡Ö RegEdit ¡×¤ÈÆþÎÏ 2. [¥¹¥¿¡¼¥È] ¢ª [¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô(R)] ¢ª "RegEdit" ¤ÈÆþÎÏ¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¤³¤³¤Î¹àÌÜ¤ÏÆüËÜ¸ì Windows 98 ¤ÎÉ½¼¨ÆâÍÆ¤ò»²¾È¤·¤Æ¤¤¤Þ¤¹¡£¡Û Export Registry File-->Save a copy of your registry" would only do Registry MERGES and NOT do a replacement. --> 3¡¥²¿¤«¤¹¤ëÁ°¤Ë¥ì¥¸¥¹¥È¥ê¤Î¥Ð¥Ã¥¯¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤òºî¤ë¤Ù¤¤Ç¤¹¡£¤ä¤ê¤«¤¿¤Ï ¡ïWINDOWS ¥Õ¥©¥ë¥À¤Ë¤¢¤ë "user.dat" ¤È "system.dat" ¥Õ¥¡¥¤¥ë¤ò°ÂÁ´¤Ê¾ì½ê ¤Ë¥³¥Ô¡¼¤·¤ÆÆþ¤ì¤Æ¤ª¤¤Þ¤¹¡£ ¡¡ °ÊÁ°¤Ë¸ÀµÚ¤µ¤ì¤¿ÊýË¡¡Ö Regedit ¡×¾å¤Ç¡Ö Registry ¡×¢ª ¡Ö Export Registry ¡× ¡Ö File ¡× ¢ª ¡Ö Save a copy of your registry ¡× ¤Ï¥ì¥¸¥¹¥È¤ê¡¼¤òÃ±¤Ë¥Þ¡¼¥¸ ¤¹¤ë¤À¤±¤Ç¤¢¤Ã¤Æ¡¢ÃÖ´¹¤ò¤¹¤ë¤ï¤±¤Ç¤ÏÌµ¤¤¤È¸À¤¦¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ 3. ºî¶ÈÁ°¤Ë¤Ï¥ì¥¸¥¹¥È¥ê¤Î¥Ð¥Ã¥¯¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ÊýË¡¤Ï¡¢¥¨¥¯¥¹¥×¥í¡¼¥éÅù¤Ç \WINDOWS ¥Ç¥£¥ì¥¯¥È¥ê¤Ë¤¢¤ë "user.dat" ¤È "system.dat" ¥Õ¥¡¥¤¥ë¤ò°ÂÁ´¤Ê¾ì½ê¤Ë¥³¥Ô¡¼¤·¤Æ¤ª¤¤Þ¤¹¡£ °ÊÁ°¤Ë½Ò¤Ù¤¿ÊýË¡¤Ç¤¢¤ë¡¢ "Regedit ¾å¤Ç [¥ì¥¸¥¹¥È¥ê(R)]¢ª[¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î½ñ¤½Ð¤·(E)] [¥ì¥¸¥¹¥È¥ê¤Î½ñ¤½Ð¤·]¥¦¥£¥ó¥É¥¦¾å¤Ç [¥Õ¥¡¥¤¥ëÌ¾(N)]¢ª[ÊÝÂ¸(S)]" ¤Ï¡¢¥ì¥¸¥¹¥È¥ê¤òÃ±¤Ë¥Þ¡¼¥¸¤¹¤ë¤À¤±¤Ç¤¢¤Ã¤Æ¡¢ÃÖ´¹¤ò¤¹¤ëÌõ¤Ç¤Ï¤Ê¤¤¤È¤¤¤¦ ¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£  4¡¥"n" ¤Ç½ªÎ»¤¹¤ë¥ì¥¸¥¹¥È¥ê¥Ä¥ê¡¼¤Î³Æ¡¹¤òÃµº÷¤·¤Þ¤¹¡£ (Îã¤¨¤Ð0007)¡¡ ¡¡¡¡NIC ¤Î IP ¥¢¥É¥ì¥¹¤ò»ý¤Ã¤¿ "IPAddress" ¤È¸Æ¤Ð¤ì¤ë¥ì¥¸¥¹¥È¥ê¡¦ ¡¡¡¡¥¨¥ó¥È¥ê¡¼¤¬¤¢¤ê¤Þ¤¹¡£¤½¤Î¥¡¼¤Î²¼¤Ë¡¢²¼µ¤ò²Ã¤¨¤Æ¤¯¤À¤µ¤¤ - http://support.microsoft.com/support/kb/articles/q158/4/74.asp ¤«¤é [Hkey_Local_Machine\System\CurrentControlset\Services\Class\NetTrans\000n] type=STRING name="MaxMTU" (quotesµ¹æ¤Ï´Þ¤á¤Ê¤¤) value=1490 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï´Þ¤á¤Ê¤¤) 4. "n" ¤Ç½ªÎ»¤¹¤ë¥ì¥¸¥¹¥È¥ê¥Ä¥ê¡¼¤Î³Æ¡¹¤òÃµº÷¤·¤Þ¤¹¡£ (Îã¤¨¤Ð0007)¡¡ NIC ¤Î IP ¥¢¥É¥ì¥¹¤ò»ý¤Ã¤¿ "IPAddress" ¤È¤¤¤¦¥ì¥¸¥¹¥È¥ê¥¨¥ó¥È¥ê¤¬ ¤¢¤ê¤Þ¤¹¡£ ¤½¤Î¥¡¼¤Î²¼¤Ë¡¢²¼µ¤ò²Ã¤¨¤Æ¤¯¤À¤µ¤¤ - <htmlurl url="http://support.microsoft.com/support/kb/articles/q158/4/74.asp"> ¤«¤é [Hkey_Local_Machine\System\CurrentControlset\Services\Class\NetTrans\000n] type=STRING name="MaxMTU" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=1490 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤)  5¡¥"TCP Receive Window" ¡Ê TCP ¼õ¿®¥¦¥¤¥ó¥É¥¦¡Ë¤òÊÑ¤¨¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ ¤³¤ì¤Ï»þ¤Ë¤Ï¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀÇ½¤ò¤«¤Ê¤ê¸þ¾å¤µ¤»¤Þ¤¹¡£ ¤â¤·¥¹¥ë¡¼¥×¥Ã¥È¤¬°¤¯¤Ê¤Ã¤¿¤È¤ï¤«¤Ã¤¿¤é¤³¤ì¤é¤Î¹àÌÜ¤ò¸µ¤ÎÃÍ¤Ë Ìá¤·¤Æ¤«¤é¥ê¥Ö¡¼¥È¤·¤Æ¤¯¤À¤µ¤¤¡£ [HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\MSTCP] type=STRING name="DefaultRcvWindow" (quotesµ¹æ¤Ï´Þ¤á¤Ê¤¤) value=32768 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï´Þ¤á¤Ê¤¤) type=STRING name="DefaultTTL" (quotesµ¹æ¤Ï´Þ¤á¤Ê¤¤) value=128 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï´Þ¤á¤Ê¤¤) 5. "TCP Receive Window" (TCP ¼õ¿®¥¦¥¤¥ó¥É¥¦) ¤âÊÑ¹¹¤Ç¤¤Þ¤¹¡£ ¤³¤ì¤Ï»þ¤È¤·¤Æ¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀÇ½¤ò¤«¤Ê¤ê¸þ¾å¤µ¤»¤ë¤³¤È¤â¤¢¤ê¤Þ¤¹¡£ ¤â¤·¥¹¥ë¡¼¥×¥Ã¥È¤¬°¤¯¤Ê¤Ã¤¿¤È¤ï¤«¤Ã¤¿¤é¡¢¤³¤ì¤é¤Î¹àÌÜ¤ò¸µ¤ÎÃÍ¤Ë Ìá¤·¤Æ¤«¤é¥ê¥Ö¡¼¥È¤·¤Æ¤¯¤À¤µ¤¤¡£ [HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\MSTCP] type=STRING name="DefaultRcvWindow" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=32768 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) type=STRING name="DefaultTTL" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=128 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤)  6¡¥ ¥ê¥Ö¡¼¥È¤·¤ÆÊÑ¹¹¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ 6. ºÆµ¯Æ°¤·¤ÆÊÑ¹¹¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ </code> ]]> <code> 1. ¥ì¥¸¥¹¥È¥ê¤Ë¤É¤ó¤ÊÊÑ¹¹¤ò²Ã¤¨¤ë¤³¤È¤âÈó¾ï¤Ë´í¸±¤Ç¤¹¡£°ÂÁ´¤Î¤¿¤á¤ËÉ¬¤º¥Ð¥Ã¥¯ ¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¼«¸ÊÀÕÇ¤¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ 2. [¥¹¥¿¡¼¥È] ¢ª [¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô(R)] ¢ª "RegEdit" ¤ÈÆþÎÏ¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¤³¤³¤Î¹àÌÜ¤ÏÆüËÜ¸ì Windows 98 ¤ÎÉ½¼¨ÆâÍÆ¤ò»²¾È¤·¤Æ¤¤¤Þ¤¹¡£¡Û 3. ºî¶ÈÁ°¤Ë¤Ï¥ì¥¸¥¹¥È¥ê¤Î¥Ð¥Ã¥¯¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ÊýË¡¤Ï¡¢¥¨¥¯¥¹¥×¥í¡¼¥éÅù¤Ç \WINDOWS ¥Ç¥£¥ì¥¯¥È¥ê¤Ë¤¢¤ë "user.dat" ¤È "system.dat" ¥Õ¥¡¥¤¥ë¤ò°ÂÁ´¤Ê¾ì½ê¤Ë¥³¥Ô¡¼¤·¤Æ¤ª¤¤Þ¤¹¡£ °ÊÁ°¤Ë½Ò¤Ù¤¿ÊýË¡¤Ç¤¢¤ë¡¢ "Regedit ¾å¤Ç [¥ì¥¸¥¹¥È¥ê(R)]¢ª[¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î½ñ¤½Ð¤·(E)] [¥ì¥¸¥¹¥È¥ê¤Î½ñ¤½Ð¤·]¥¦¥£¥ó¥É¥¦¾å¤Ç [¥Õ¥¡¥¤¥ëÌ¾(N)]¢ª[ÊÝÂ¸(S)]" ¤Ï¡¢¥ì¥¸¥¹¥È¥ê¤òÃ±¤Ë¥Þ¡¼¥¸¤¹¤ë¤À¤±¤Ç¤¢¤Ã¤Æ¡¢ÃÖ´¹¤ò¤¹¤ëÌõ¤Ç¤Ï¤Ê¤¤¤È¤¤¤¦ ¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ 4. "n" ¤Ç½ªÎ»¤¹¤ë¥ì¥¸¥¹¥È¥ê¥Ä¥ê¡¼¤Î³Æ¡¹¤òÃµº÷¤·¤Þ¤¹¡£ (Îã¤¨¤Ð0007)¡¡ NIC ¤Î IP ¥¢¥É¥ì¥¹¤ò»ý¤Ã¤¿ "IPAddress" ¤È¤¤¤¦¥ì¥¸¥¹¥È¥ê¥¨¥ó¥È¥ê¤¬ ¤¢¤ê¤Þ¤¹¡£ ¤½¤Î¥¡¼¤Î²¼¤Ë¡¢²¼µ¤ò²Ã¤¨¤Æ¤¯¤À¤µ¤¤ - </code> <tscreen> <htmlurl url="http://support.microsoft.com/support/kb/articles/q158/4/74.asp"> ¤«¤é </tscreen> <code> [Hkey_Local_Machine\System\CurrentControlset\Services\Class\NetTrans\000n] type=STRING name="MaxMTU" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=1490 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) 5. "TCP Receive Window" (TCP ¼õ¿®¥¦¥¤¥ó¥É¥¦) ¤âÊÑ¹¹¤Ç¤¤Þ¤¹¡£ ¤³¤ì¤Ï»þ¤È¤·¤Æ¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÀÇ½¤ò¤«¤Ê¤ê¸þ¾å¤µ¤»¤ë¤³¤È¤â¤¢¤ê¤Þ¤¹¡£ ¤â¤·¥¹¥ë¡¼¥×¥Ã¥È¤¬°¤¯¤Ê¤Ã¤¿¤È¤ï¤«¤Ã¤¿¤é¡¢¤³¤ì¤é¤Î¹àÌÜ¤ò¸µ¤ÎÃÍ¤Ë Ìá¤·¤Æ¤«¤é¥ê¥Ö¡¼¥È¤·¤Æ¤¯¤À¤µ¤¤¡£ [HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\VxD\MSTCP] type=STRING name="DefaultRcvWindow" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=32768 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) type=STRING name="DefaultTTL" (¥À¥Ö¥ë¥¯¥©¡¼¥Æ¡¼¥·¥ç¥ó¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) value=128 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï½ñ¤«¤Ê¤¤¤Ç¤¯¤À¤µ¤¤) 6. ºÆµ¯Æ°¤·¤ÆÊÑ¹¹¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ </code> <sect2>MS Windows NT 4.x <![ %codes CDATA [ <code>  1¡¥¥ì¥¸¥¹¥È¥ê¤Ë¤É¤ó¤ÊÊÑ¹¹¤ò²Ã¤¨¤ë¤³¤È¤âÈó¾ï¤Ë´í¸±¤Ç¤¹¡£°ÂÁ´¤Î¤¿¤á¤ËÉ¬¤º¥Ð¥Ã¥¯ ¡¡¡¡¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡¥¼«Ê¬¼«¿È¤Î¥ê¥¹¥¯¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ 1. ¥ì¥¸¥¹¥È¥ê¤Ë¤É¤ó¤ÊÊÑ¹¹¤ò²Ã¤¨¤ë¤³¤È¤âÈó¾ï¤Ë´í¸±¤Ç¤¹¡£°ÂÁ´¤Î¤¿¤á¤ËÉ¬¤º¥Ð¥Ã¥¯ ¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¼«¸ÊÀÕÇ¤¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ Run-->RegEdit --> 2¡¥¡Ö¥¹¥¿¡¼¥È¡× ¢ª ¡Ö Run (¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô)¡× ¢ª ¡Ö RegEdit ¡×¤ÈÆþÎÏ 2. [¥¹¥¿¡¼¥È] ¢ª [¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô] ¢ª "RegEdit" ¤ÈÆþÎÏ¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¤³¤³¤Î¹àÌÜ¤ÏÆüËÜ¸ì Windows NT ¤ÎÉ½¼¨ÆâÍÆ¤ò»²¾È¤·¤Æ¤¤¤Þ¤¹¡£¡Û Export Registry File-->Save a copy of your registry to a reliable place --> 3¡¥¡Ö¥ì¥¸¥¹¥È¥ê¡× ¢ª ¡Ö Export Registry File (¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î¼è¤ê¹þ¤ß)¡× ¢ª ¡Ö Save a copy (¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î½ñ¤½Ð¤·)¡×¤Ç¥ì¥¸¥¹¥È¥ê¤Î¥³¥Ô¡¼¤ò°ÂÁ´¤Ê¾ì½ê¤Ë¤·¤Þ¤¤¤Þ¤¹¡£  4¡¥ 2 ËÜ¤Î²ÄÇ½¤Ê¥ì¥¸¥¹¥È¥ê¥Ä¥ê¡¼¤Ë¼¡¤Î¥¡¼¤òºîÀ®¤·¤Æ¤¯¤À¤µ¤¤¡£ ¡¡¡¡Â¿¿ô¤Î¥¨¥ó¥È¥ê¡¼¤¬¡¢¥À¥¤¥ä¥ë¥¢¥Ã¥×¥Í¥Ã¥È¥ï¡¼¥¯ (ppp)¡¢¥¤¡¼¥µ¥Í¥Ã¥È NIC¡¢PPTP ¡¡ VPN ¤Ê¤É¤ÎÍÍ¡¹¤Ê¥Í¥Ã¥È¥ï¡¼¥¯ÁõÃÖÍÑ¤Ë¤¢¤ê¤Þ¤¹¡£ [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Parameters\Tcpip] ¤È [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\<Adapter-name>\Parameters \Tcpip] "<Adapter-Name>" ¤Ï¼«Ê¬¤Î¥¢¥Ã¥×¥ê¥ó¥¯ LAN NIC ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î ¡¡¡¡¡¡¤½¤ì¤¾¤ì¤ÎÌ¾Á°¤ËÃÖ´¹¤·¤Þ¤¹¡£ type=DWORD name="MTU" (quotesµ¹æ¤Ï´Þ¤á¤Ê¤¤) value=1490 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï´Þ¤á¤Ê¤¤)  *** ¤â¤·¤µ¤é¤Ë¤¢¤Ê¤¿¤¬ NT 4.x¤Ç¤Î MSS¡¢TCP Window Size ¡¢TTL ¥Ñ¥é¥á¡¼¥¿¡¼¤ò *** ÊÑ¹¹¤¹¤ëÊýË¡¤òÃÎ¤Ã¤Æ¤¤¤¿¤é dranch@trinnet.net ¤Ë¥á¡¼¥ë¤òÁ÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£ *** HOWTO ¤ËÄÉ²Ã¤·¤¿¤¤¤È»×¤¤¤Þ¤¹¡£  5¡¥¥ê¥Ö¡¼¥È¤·¤ÆÊÑ¹¹¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ </code> ]]> <code> 1. ¥ì¥¸¥¹¥È¥ê¤Ë¤É¤ó¤ÊÊÑ¹¹¤ò²Ã¤¨¤ë¤³¤È¤âÈó¾ï¤Ë´í¸±¤Ç¤¹¡£°ÂÁ´¤Î¤¿¤á¤ËÉ¬¤º¥Ð¥Ã¥¯ ¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¼«¸ÊÀÕÇ¤¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ 2. [¥¹¥¿¡¼¥È] ¢ª [¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô] ¢ª "RegEdit" ¤ÈÆþÎÏ¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¤³¤³¤Î¹àÌÜ¤ÏÆüËÜ¸ì Windows NT ¤ÎÉ½¼¨ÆâÍÆ¤ò»²¾È¤·¤Æ¤¤¤Þ¤¹¡£¡Û 3¡¥¡Ö¥ì¥¸¥¹¥È¥ê¡× ¢ª ¡Ö Export Registry File (¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î¼è¤ê¹þ¤ß)¡× ¢ª ¡Ö Save a copy (¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î½ñ¤½Ð¤·)¡×¤Ç¥ì¥¸¥¹¥È¥ê¤Î¥³¥Ô¡¼¤ò °ÂÁ´¤Ê¾ì½ê¤Ë¤·¤Þ¤¤¤Þ¤¹¡£ 4¡¥ 2 ËÜ¤Î²ÄÇ½¤Ê¥ì¥¸¥¹¥È¥ê¥Ä¥ê¡¼¤Ë¼¡¤Î¥¡¼¤òºîÀ®¤·¤Æ¤¯¤À¤µ¤¤¡£ ¡¡¡¡Â¿¿ô¤Î¥¨¥ó¥È¥ê¡¼¤¬¡¢¥À¥¤¥ä¥ë¥¢¥Ã¥×¥Í¥Ã¥È¥ï¡¼¥¯ (ppp)¡¢¥¤¡¼¥µ¥Í¥Ã¥È NIC¡¢PPTP ¡¡ VPN ¤Ê¤É¤ÎÍÍ¡¹¤Ê¥Í¥Ã¥È¥ï¡¼¥¯ÁõÃÖÍÑ¤Ë¤¢¤ê¤Þ¤¹¡£ [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Parameters\Tcpip] ¤È [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\<Adapter-name>\Parameters \Tcpip] "<Adapter-Name>" ¤Ï¼«Ê¬¤Î¥¢¥Ã¥×¥ê¥ó¥¯ LAN NIC ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î ¡¡¡¡¡¡¤½¤ì¤¾¤ì¤ÎÌ¾Á°¤ËÃÖ´¹¤·¤Þ¤¹¡£ type=DWORD name="MTU" (quotesµ¹æ¤Ï´Þ¤á¤Ê¤¤) value=1490 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï´Þ¤á¤Ê¤¤) *** ¤â¤·¤µ¤é¤Ë¤¢¤Ê¤¿¤¬ NT 4.x¤Ç¤Î MSS¡¢TCP Window Size ¡¢TTL ¥Ñ¥é¥á¡¼¥¿¡¼¤ò *** ÊÑ¹¹¤¹¤ëÊýË¡¤òÃÎ¤Ã¤Æ¤¤¤¿¤é dranch@trinnet.net ¤Ë¥á¡¼¥ë¤òÁ÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£ *** HOWTO ¤ËÄÉ²Ã¤·¤¿¤¤¤È»×¤¤¤Þ¤¹¡£ 5¡¥¥ê¥Ö¡¼¥È¤·¤ÆÊÑ¹¹¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ </code> <sect2>MS Windows 2000 <![ %codes CDATA [ <code>  1¡¥¥ì¥¸¥¹¥È¥ê¤Ë¤É¤ó¤ÊÊÑ¹¹¤ò²Ã¤¨¤ë¤³¤È¤âÈó¾ï¤Ë´í¸±¤Ç¤¹¡£°ÂÁ´¤Î¤¿¤á¤ËÉ¬¤º¥Ð¥Ã¥¯ ¡¡ ¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡¥¼«Ê¬¼«¿È¤Î¥ê¥¹¥¯¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ Run-->RegEdit --> 2¡¥¡Ö¥¹¥¿¡¼¥È¡× ¢ª ¡Ö Run (¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô)¡× ¢ª ¡Ö RegEdit ¡×¤ÈÆþÎÏ 2. [¥¹¥¿¡¼¥È] ¢ª [¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô] ¢ª "RegEdit" ¤ÈÆþÎÏ¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¤³¤³¤Î¹àÌÜ¤ÏÆüËÜ¸ì Windows 2000 ¤ÎÉ½¼¨ÆâÍÆ¤ò»²¾È¤·¤Æ¤¤¤Þ¤¹¡£¡Û Export Registry File-->Save a copy of your registry to a reliable place --> 3¡¥¡Ö¥ì¥¸¥¹¥È¥ê¡× ¢ª ¡Ö Export Registry File (¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î¼è¤ê¹þ¤ß)¡× ¢ª ¡Ö Save a copy (¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î½ñ¤½Ð¤·)¡×¤Ç¥ì¥¸¥¹¥È¥ê¤Î¥³¥Ô¡¼¤ò°ÂÁ´¤Ê¾ì½ê¤Ë¤·¤Þ¤¤¤Þ¤¹¡£  4¡¥¥¡¼¤Þ¤Ç¥Ê¥Ó¥²¡¼¥È¤·¤Þ¤¹ - ¡¡¡¡[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Inter faces\<ID for Adapter> ³Æ <ID for Adapter> ¡Ê¥¢¥À¥×¥¿¤Î ID ¡Ë¤Ï¡¢DNS¡¢TCP/IP ¥¢¥É¥ì¥¹¡¢¥Ç¥Õ¥©¥ë ¥È¡¦¥²¡¼¥È¥¦¥§¥¤¡¢¥µ¥Ö¥Í¥Ã¥È¡¦¥Þ¥¹¥¯¤Ê¤É¤Î¤¿¤á¤Î¥Ç¥Õ¥©¥ë¥È¡¦¥¡¼¤ò»ý¤Ã¤Æ¤¤ ¤Þ¤¹¡£¼«Ê¬¤Î¥Í¥Ã¥È¥ï¡¼¥¯¡¦¥«¡¼¥ÉÍÑ¤Î¤â¤Î¤ò¸«¤Ä¤±¤Æ¤¯¤À¤µ¤¤¡£  5¡¥¼¡¤Î¥¨¥ó¥È¥ê¡¼¤òºî¤ê¤Þ¤¹¡£ type=DWORD name="MTU" (quotesµ¹æ¤Ï´Þ¤á¤Ê¤¤) value=1490 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï´Þ¤á¤Ê¤¤) http://support.microsoft.com/support/kb/articles/Q120/6/42.asp?LN=EN-US&SD=gn&FR=0 *** ¤â¤· NT 2000¤Ç¤Î MSS¡¢TCP Window Size ¡¢TTL ¥Ñ¥é¥á¡¼¥¿¡¼¤òÊÑ¹¹¤¹¤ëÊýË¡¤ò *** ÃÎ¤Ã¤Æ¤¤¤¿¤é dranch@trinnet.net ¤Ë¥á¡¼¥ë¤òÁ÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£ *** HOWTO¤ËÄÉ²Ã¤·¤¿¤¤¤È»×¤¤¤Þ¤¹¡£  6¡¥¥ê¥Ö¡¼¥È¤·¤ÆÊÑ¹¹¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ </code> ]]> <code> 1¡¥¥ì¥¸¥¹¥È¥ê¤Ë¤É¤ó¤ÊÊÑ¹¹¤ò²Ã¤¨¤ë¤³¤È¤âÈó¾ï¤Ë´í¸±¤Ç¤¹¡£°ÂÁ´¤Î¤¿¤á¤ËÉ¬¤º¥Ð¥Ã¥¯ ¡¡ ¥¢¥Ã¥×¡¦¥³¥Ô¡¼¤ò¼è¤Ã¤Æ¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡¥¼«Ê¬¼«¿È¤Î¥ê¥¹¥¯¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ 2. [¥¹¥¿¡¼¥È] ¢ª [¥Õ¥¡¥¤¥ëÌ¾¤ò»ØÄê¤·¤Æ¼Â¹Ô] ¢ª "RegEdit" ¤ÈÆþÎÏ¤·¤Þ¤¹¡£ ¡ÚÌõÃí: ¤³¤³¤Î¹àÌÜ¤ÏÆüËÜ¸ì Windows 2000 ¤ÎÉ½¼¨ÆâÍÆ¤ò»²¾È¤·¤Æ¤¤¤Þ¤¹¡£¡Û 3¡¥¡Ö¥ì¥¸¥¹¥È¥ê¡× ¢ª ¡Ö Export Registry File (¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î¼è¤ê¹þ¤ß)¡× ¢ª ¡Ö Save a copy (¥ì¥¸¥¹¥È¥ê¥Õ¥¡¥¤¥ë¤Î½ñ¤½Ð¤·)¡×¤Ç¥ì¥¸¥¹¥È¥ê¤Î¥³¥Ô¡¼¤ò °ÂÁ´¤Ê¾ì½ê¤Ë¤·¤Þ¤¤¤Þ¤¹¡£ 4¡¥¥¡¼¤Þ¤Ç¥Ê¥Ó¥²¡¼¥È¤·¤Þ¤¹ - ¡¡¡¡[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Inter faces\<ID for Adapter> ³Æ <ID for Adapter> ¡Ê¥¢¥À¥×¥¿¤Î ID ¡Ë¤Ï¡¢DNS¡¢TCP/IP ¥¢¥É¥ì¥¹¡¢ ¥Ç¥Õ¥©¥ë¥È¡¦¥²¡¼¥È¥¦¥§¥¤¡¢¥µ¥Ö¥Í¥Ã¥È¡¦¥Þ¥¹¥¯¤Ê¤É¤Î¤¿¤á¤Î ¥Ç¥Õ¥©¥ë¥È¡¦¥¡¼¤ò»ý¤Ã¤Æ¤¤¤Þ¤¹¡£¼«Ê¬¤Î¥Í¥Ã¥È¥ï¡¼¥¯¡¦¥«¡¼¥ÉÍÑ¤Î¤â¤Î¤ò¸«¤Ä¤±¤Æ¤¯¤À¤µ¤¤¡£ 5¡¥¼¡¤Î¥¨¥ó¥È¥ê¡¼¤òºî¤ê¤Þ¤¹¡£ type=DWORD name="MTU" (quotesµ¹æ¤Ï´Þ¤á¤Ê¤¤) value=1490 (10 ¿Ê¿ô) ((10 ¿Ê¿ô)¤È¤¤¤¦Ê¸»ú¤Ï´Þ¤á¤Ê¤¤) http://support.microsoft.com/support/kb/articles/Q120/6/42.asp?LN=EN-US&SD=gn&FR=0 *** ¤â¤· NT 2000¤Ç¤Î MSS¡¢TCP Window Size ¡¢TTL ¥Ñ¥é¥á¡¼¥¿¡¼¤òÊÑ¹¹¤¹¤ëÊýË¡¤ò *** ÃÎ¤Ã¤Æ¤¤¤¿¤é dranch@trinnet.net ¤Ë¥á¡¼¥ë¤òÁ÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£ *** HOWTO¤ËÄÉ²Ã¤·¤¿¤¤¤È»×¤¤¤Þ¤¹¡£ 6¡¥¥ê¥Ö¡¼¥È¤·¤ÆÊÑ¹¹¤òÍ¸ú¤Ë¤·¤Æ¤¯¤À¤µ¤¤¡£ </code>   ¾å½Ò¤Î¤è¤¦¤Ë¡¢¤â¤· OS/2, MacOS Åù¤ÎÂ¾¤Î OS ¤ËÆ±ÍÍ¤ÊÊÑ¹¹¤ò²Ã¤¨¤ëÊýË¡¤ò ÃÎ¤Ã¤Æ¤¤¤ëÊý¤Ï¡¢ <htmlurl url="mailto:dranch@trinnet.net" name="David Ranch"> ¤Ø¥á¡¼¥ë¤òÁ÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£ HOWTO ¤ËÆþ¤ì¤Æ¤¤¤¤Þ¤¹¡£   <sect1>IP ¥Þ¥¹¥«¥ì¡¼¥É FTP ¥¯¥é¥¤¥¢¥ó¥È¤¬Æ°ºî¤·¤Þ¤»¤ó¡£   "ip_masq_ftp" ¥â¥¸¥å¡¼¥ë¤¬¥í¡¼¥É¤µ¤ì¤Æ¤¤¤ë¤«¥Á¥§¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤ì¤ò¹Ô¤¦¤Ë¤Ï¡¢¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤Ë¥í¥°¥¤¥ó¤·¤Æ "/sbin/lsmod" ¥³¥Þ¥ó¥É¤ò ¼Â¹Ô¤·¤Þ¤¹¡£ ¤â¤·¡¢¥í¡¼¥É¤µ¤ì¤Æ¤¤¤ëÈ¦¤Î "ip_masq_ftp" ¥â¥¸¥å¡¼¥ë¤¬¸«Åö¤¿¤é¤Ê¤¤¤Ê¤é¡¢ <ref id="firewall-examples" name="IP ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¥Ý¥ê¥·¡¼¤òÀßÄê¤¹¤ë"> ¤Î¾Ï¤Ç¿ä¾©¤µ¤ì¤Æ¤¤¤ë´ðËÜÅª¤Ê /etc/rc.d/rc.firewall ¤Ë½¾¤Ã¤Æ¤¤¤ë¤«³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ ¤â¤·¡¢ÆÈ¼«¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ò»È¤Ã¤Æ¤¤¤ë¤Ê¤é¡¢ HOWTO ¤ÎÎã¤Ë¤¢¤ëËØ¤É¤Î¥ë¡¼¥ë¤¬ ´Þ¤Þ¤ì¤Æ¤¤¤ë¤«¤É¤¦¤«¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤¦¤·¤Ê¤¤¤È¤¤¤Ä¤Þ¤Ç¤âÂô»³¤ÎÌäÂê¤Ë¸«Éñ¤ï¤ì¤ë¤³¤È¤Ë¤Ê¤ê¤Þ¤¹¡£   <sect1>IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬ÃÙ¤¤¤è¤¦¤Ë¸«¤¨¤Þ¤¹¡£  ¤³¤ì¤Ë¤Ï´ö¤Ä¤«¤Î¸¶°ø¤¬¹Í¤¨¤é¤ì¤Þ¤¹ - <itemize>  <item>¤¢¤Ê¤¿¤Ï¥â¥Ç¥àÀÇ½¤Ë¸½¼Â°Ê¾å¤Î¤â¤Î¤ò´üÂÔ¤·¤Æ¤¤¤ë¤«¤â¤·¤ì¤Þ¤»¤ó¡£É¸½àÅª¤Ê 56K ¤Î¥â¥Ç¥àÀÜÂ³¤Ë¤Ä¤¤¤Æ·×»»¤·¤Æ¤ß¤Þ¤¹¡£ <enum>   <item>56k ¥â¥Ç¥à¤Ç¤¹¤«¤é¡¢ËèÉÃ 56,000 ¥Ó¥Ã¥È¤Î¥Ç¡¼¥¿Â®ÅÙ¤Ë¤Ê¤ê¤Þ¤¹¡£  <item>¼ÂºÝ¤Ë¤ÏÊÆ¹ñ FCC ¤ÎÀ©¸Â¤Ë¤è¤Ã¤Æ 56K ¤Î¥â¥Ç¥à¤Ç¤Ï¤Ê¤¯ 52k ¤Î¥â¥Ç¥à¤ò»ý¤Ã¤Æ¤¤¤ë¤³¤È¤Ë¤Ê¤ê¤Þ¤¹¡£  <item>¤Ç¤â¼ÂºÝ¤Ï¤Û¤È¤ó¤É 52K ¤ÇÀÜÂ³¤Ç¤¤ë¤³¤È¤Ï¤¢¤ê¤Þ¤»¤ó¡£»ä¤ÏÉáÃÊ 48K °Ê²¼¤Ç¤Ä¤Ê¤¬¤ê¤Þ¤¹¡£   <item>ËèÉÃ 48,000 ¥Ó¥Ã¥È¤È¤¤¤¦¤³¤È¤ÏËèÉÃ 4,800 ¥Ð¥¤¥È¤Ç¤¹¡£ (8¥Ó¥Ã¥È¤¬ 1 ¥Ð¥¤¥È¤Ç¡¢ RS232 ¥·¥ê¥¢¥ë¥Ó¥Ã¥È¤Ï³«»Ï¥Ó¥Ã¥È¤È½ªÎ»¥Ó¥Ã¥È¤Ë 2¥Ó¥Ã¥È¤¬É¬Í×¤Ç¤¹¡£)   <item>MTU ¤¬ 1500 ¤Î¤È¤¡¢ 1 ÉÃ´Ö¤Ë 3.2 ¥Ñ¥±¥Ã¥È¼õ¤±¼è¤ì¤Þ¤¹¡£ ¤³¤ì¤Ï¥Õ¥é¥°¥á¥ó¥Æ¡¼¥·¥ç¥ó¤ò´Þ¤à¤Î¤Ç¡¢ 1 ÉÃ´Ö¤Ë 3 ¥Ñ¥±¥Ã¥È¤ËÀÚ¤ê¼Î¤Æ ¤é¤ì¤Þ¤¹¡£   <item>¤Þ¤¿ MTU ¤¬ 1500 ¤À¤È¡¢¤³¤Î¾ì¹ç¤Ï 3.2 x 40 ¥Ð¥¤¥È (8%) ¤Î TCP/IP ¤Î ¥ª¡¼¥Ð¡¼¥Ø¥Ã¥É¤¬¤¢¤ê¤Þ¤¹¡£   <item>½¾¤Ã¤Æ¡¢´üÂÔ¤Ç¤¤ëºÇ¹â¥Ç¡¼¥¿Å¾Á÷Ç½ÎÏ¤Ï¡¢°µ½ÌÌµ¤·¤Ç4.68KB/s ¤Ç¤¹¡£ v.42bis ¥Ï¡¼¥É¥¦¥¨¥¢°µ½Ì¡¢ MNP5, °¿¤Ï MS/Stac °µ½ÌÅù¤Ç°µ½Ì¤·¤¿¾ì¹ç¡¢ ¥Æ¥¥¹¥È¥Õ¥¡¥¤¥ë¤Î¤è¤¦¤Ê¹â°µ½Ì¤Ë¸þ¤¤¤¿¥Ç¡¼¥¿¤Ç¤Ï°õ¾ÝÅª¤ÊÃÍ¤ò ½Ð¤·¤Æ¤¤¤Þ¤¹¤¬¡¢¼ÂºÝ¤Ï ZIP ¤ä MP3 ¤Î¤è¤¦¤Ê¡¢´û¤Ë°µ½Ì¤µ¤ì¤Æ¤¤¤ë¥Õ¥¡¥¤¥ë¤Î Å¾Á÷¤Ç¤ÏÃÙ¤¯¤Ê¤Ã¤Æ¤·¤Þ¤¤¤Þ¤¹¡£ </enum>  <item>¥¤¡¼¥µ¥Í¥Ã¥È¤ò»È¤¦¤È¤¤ÎÀßÄê (DSL, ¥±¡¼¥Ö¥ë¥â¥Ç¥à, LAN Åù) <itemize>   <item>ÆâÉô¤È³°Éô¤Î¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÎ¾Êý¤¬ "IP Alias" ¤Îµ¡Ç½¤Ç 1 ¤Ä¤Î ¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¾å¤ÇÆ°ºî¤·¤Æ¤¤¤ë¤È¤¤¤¦¤³¤È¤¬¤Ê¤¤¤«¤É¤¦¤«³ÎÇ§¤·¤Æ ¤¯¤À¤µ¤¤¡£ ¤â¤·¤½¤¦¤Ê¤Ã¤Æ¤¤¤ë¤È¡¢Æ°ºî¤·¤Æ¤Ï¤¤¤ë¤â¤Î¤Î¡¢¹â¤¤Î¨¤Î¾×ÆÍ¤ä IRQ ¤Î »ÈÍÑÎ¨Åù¤Ë¤è¤Ã¤Æ¤È¤Æ¤Ä¤â¤Ê¤¯ÃÙ¤¯¤Ê¤ê¤Þ¤¹¡£ ÊÌ¤Î¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤òÆþ¼ê¤·¤Æ¡¢ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤È³°Éô¥Í¥Ã¥È¥ï¡¼¥¯¤¬ ³Æ¡¹¼«Ê¬¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤ò»ý¤Ä¤è¤¦¤Ë¤¹¤ë¤³¤È¤ò¶¯¤¯¤ª¾©¤á¤·¤Þ¤¹¡£  ¥¤¡¼¥µ¥Í¥Ã¥ÈÀßÄê¤ÎÃæ¤Î SPEED ¤È DUPLEX ¤ÎÎ¾Êý¤¬Å¬ÀÚ¤Ç¤¢¤ë¤³¤È¤ò³Î¤«¤á¤Æ ¤¯¤À¤µ¤¤¡£ <itemize>   <item>10Mb/s ¥¤¡¼¥µ¥Í¥Ã¥È¥«¡¼¥É¤ä¡¢ËØ¤É¤Î 100Mb/s ¥«¡¼¥É¤ÎÃæ¤Ë¤Ï¡¢ Á´Æó½ÅÀÜÂ³¡ÚÌõÃí: Full Duplex¡Û¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ ¥¤¡¼¥µ¥Í¥Ã¥È¡¦¥«¡¼¥É¤«¤é DSL ¥â¥Ç¥à¤Ø¤ÎÀÜÂ³ (Ãæ´Ö¤Î¥Ï¥Ö¤Î¤Ê¤¤¾ì¹ç) ¤Ï¡¢ DSL ¥â¥Ç¥à¤¬Á´Æó½Å¤ò¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤ë¾ì¹ç¤Î¤ß¡¢¤³¤ì¤ò ÀßÄê¤¹¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ ¤Þ¤¿»ÈÍÑ¤µ¤ì¤Æ¤¤¤ë 8 ËÜ¤Î¥ï¥¤¥ä¡¼Á´¤Æ¤¬·ëÀþ¤µ¤ì¤Æ¤¤¤ëÎÉ¼Á¤Î ¥¤¡¼¥µ¥Í¥Ã¥È¥±¡¼¥Ö¥ë¤ò»È¤¦¤è¤¦¿´³Ý¤±¤Æ¤¯¤À¤µ¤¤¡£   <item>¥Ï¥Ö¤ò»È¤Ã¤¿ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤ÏÁ´Æó½Å¡ÚÌõÃí: Full Duplex¡Û µ¡Ç½¤ò»È¤¨¤Þ¤»¤ó¡£ Á´Æó½ÅÄÌ¿®µ¡Ç½¤ò»È¤¦¤Ë¤Ï 10Mb/s ¤Þ¤¿¤Ï 100Mb/s ¤Î¥¤¡¼¥µ¥Í¥Ã¥È¥¹¥¤¥Ã¥Á ¡ÚÌõÃí: ¥¹¥¤¥Ã¥Á¥ó¥°¥Ï¥Ö¡Û¤ò»È¤¦É¬Í×¤¬¤¢¤ê¤Þ¤¹¡£   <item>¥¤¡¼¥µ¥Í¥Ã¥È¥«¡¼¥É¾å¤Î 10/100Mb/s SPEED ¼«Æ°¥Í¥´¥·¥¨¡¼¥·¥ç¥ó¤È Á´Æó½Å/È¾Æó½Å¼«Æ°¥Í¥´¥·¥¨¡¼¥·¥ç¥ó¤ÎÁÐÊý¶¦¡¢¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÇË²õ¤ò µ¯¤³¤¹¤³¤È¤¬¤¢¤ê¤Þ¤¹¡£ ¤Ç¤¤ì¤Ð NIC ¤Î speed ¤È duplex ¤ÎÎ¾Êý¤È¤â¥«¡¼¥Í¥ë¡¦¥½¡¼¥¹¤ËÀßÄê¤ò Ä¾¤Ë½ñ¤¹þ¤à (¥Ï¡¼¥É¥³¡¼¥É) ¤³¤È¤ò¤ª¾©¤á¤·¤Þ¤¹¡£ ¤³¤ì¤Ï¡¢Linux NIC ¥«¡¼¥Í¥ë¡¦¥â¥¸¥å¡¼¥ë¤Ë¤ÏÄ¾ÀÜÀßÄê²ÄÇ½¤Ê¤Î¤Ç¤¹¤¬¡¢ ¥«¡¼¥Í¥ë¥â¥¸¥å¡¼¥ë¤ò»È¤ï¤º¥É¥é¥¤¥Ð¤òÄ¾¤ËÁÈ¤ß¹þ¤à¤è¤¦ÀßÄê¤·¤Æ ¥³¥ó¥Ñ¥¤¥ë¤µ¤ì¤¿¥«¡¼¥Í¥ë (¥â¥Î¥ê¥·¥Ã¥¯¡¦¥«¡¼¥Í¥ë) ¤Ë¤ª¤¤¤Æ¤Ï Ä¾ÀÜÀßÄê²ÄÇ½¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó¡£ ¤³¤Î¾ì¹ç¡¢ <ref id="Donald Becker's NIC drivers and utils FAQ-Hardware"> ¤«¤é¤Î MII utilities ¤ò»È¤¦¤«¡¢¤Þ¤¿¤Ï¥«¡¼¥Í¥ë¥½¡¼¥¹¤ËÀßÄê¤òÄ¾¤Ë ½ñ¤¹þ¤àÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ </itemize> </itemize>  <item>MTU ¤òºÇÅ¬²½¤·¡¢¾¯¤Ê¤¯¤È¤â 8192 ¤Ë TCP Sliding window ¤ò¥»¥Ã¥È¤·¤Þ¤¹¡£ <itemize>  <item>´°Á´¤Ë¤³¤ÎÊ¸½ñ¤ÎÈÏ°Ï³°¤Ê¤Î¤Ç¤¹¤¬¡¢¤³¤ì¤Ï PPP, ¥¤¡¼¥µ¥Í¥Ã¥È, TokenRing Åù¡¢ÆâÉô¤Þ¤¿¤Ï³°Éô¤Ë»ý¤Ã¤Æ¤¤¤ëÁ´¤Æ¤Î ¥Í¥Ã¥È¥ï¡¼¥¯¡¦¥ê¥ó¥¯¤ò¾¯¤·¤À¤±ÎÉ¤¯¤·¤Þ¤¹¡£ ¤³¤Î¥È¥Ô¥Ã¥¯¤Î¾ÜºÙ¤Ï¡¢¾åµ¤Î <ref id="MTU-issues" name="MTU ÌäÂê"> ¤Î¹àÌÜ¤ÎÃæ¤Ç ´Ê·é¤Ë¿¨¤ì¤é¤ì¤Æ¤¤¤Þ¤¹¡£ ¹¹¤Ë¤â¤Ã¤È¾Ü¤·¤¯¤Ï <htmlurl url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - Section 16"> ¤Î ¥Í¥Ã¥È¥ï¡¼¥¯¤ÎºÇÅ¬²½ (Network Optimization) ¤Î¾Ï¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£ </itemize>  <item>PPP ¤ò»È¤Ã¤Æ¤¤¤ë¥·¥ê¥¢¥ë¥â¥Ç¥à¤Î¥æ¡¼¥¶ <itemize>  <item>³°Éô¥â¥Ç¥à¤ò»È¤Ã¤Æ¤¤¤ë¤Ê¤é¡¢¤è¤¤¥·¥ê¥¢¥ë¥±¡¼¥Ö¥ë¤ò»È¤Ã¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£¤µ¤é¤Ë¡¢Â¿¤¯¤Î PC ¤Ï¡¢¥Þ¥¶¡¼¥Ü¡¼¥É¤« I/O ¥«¡¼¥É¤«¤é¥·¥ê¥¢¥ë¥Ý¡¼¥È¥³¥Í¥¯¥¿¤Þ¤Ç¤òÊ¿¤Ù¤Ã¤¿¤¤¥ê¥Ü¥ó¡¦¥±¡¼¥Ö¥ë¤ÇÀÜÂ³¤·¤Æ¤¤¤Þ¤¹¡£¤³¤ì¤é¤¬¤¢¤ì¤Ð¡¢¤½¤ì¤¬¤è¤¤¾õÂÖ¤Ç¤¢¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£¸Ä¿ÍÅª¤Ë¡¢»ä¤ÏÁ´¤Æ¤Î¥ê¥Ü¥ó¡¦¥±¡¼¥Ö¥ë¤Î¤Þ¤ï¤ê¤Ë¥Õ¥§¥é¥¤¥È¡¦¥³¥¢(³¥¹õ¿§¤Î¶âÂ°Åª¤Ê¥ê¥ó¥°)¤òÉÕ¤±¤Æ¤¤¤Þ¤¹¡£  <item>¤³¤Î HOWTO ¤Î FAQ ¥»¥¯¥·¥ç¥ó¤Î¾å¤Î¤Û¤¦¤ËµºÜ¤µ¤ì¤¿¤è¤¦¤Ë MTU ¤¬ 1500 ¤Ë¥»¥Ã¥È¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£  <item>¥·¥ê¥¢¥ë¥Ý¡¼¥È¤¬ 16550A ¤¢¤ë¤¤¤Ï¤½¤ì¤è¤êÎÉ¤¤ UART ¤Ç¤¢¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ Ä´¤Ù¤ë¤Ë¤Ï "dmesg | more" ¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤·¤Þ¤¹¡£  <item>¥·¥ê¥¢¥ë¥Ý¡¼¥È¤Î IRQ ¤ÎÀßÄê <itemize>  <item>¤Û¤È¤ó¤É¤Î PC ¥Ï¡¼¥É¥¦¥¨¥¢¾å¤Ç Craig Estey ¤Î <url url="http://www.best.com/˜cae/irqtune/" name="IRQTUNE"> tool ¤ò»È¤¦¤È SLIP ¤ä PPP ÀÜÂ³¤ò´Þ¤à¥·¥ê¥¢¥ë¥Ý¡¼¥È¤ÎÀÇ½¤òÃø¤·¤¯¸þ¾å¤µ¤»¤Þ¤¹¡£ </itemize>   <item>PPP ÀÜÂ³ÍÑ¤Î¥·¥ê¥¢¥ë¥Ý¡¼¥È¤¬ 115,200 bps¡Ê°¿¤Ï ISDN ¥¿¡¼¥ß¥Ê¥ë¥¢¥À¥×¥¿Åù¤Î¤è¤¦¤Ê¡¢¥â¥Ç¥à¤È¥·¥ê¥¢¥ë¥Ý¡¼¥È¤ÎÎ¾Êý¤¬°·¤¨¤ë ¾ì¹ç¤Ï¡¢¤³¤ì¤è¤êÁá¤¤Â®ÅÙ¡Ë¤ÇÆ°ºî¤·¤Æ¤¤¤ë¤«³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ <itemize>   <item>2.0.x ¥«¡¼¥Í¥ë - 2.0.x ¥«¡¼¥Í¥ë¤Ç¤ÏÄ¾ÀÜ 115200 ¤Ë ¥·¥ê¥¢¥ë¥Ý¡¼¥È¤òÀßÄê¤¹¤ë¤³¤È¤¬¤Ç¤¤Ê¤¤¤Î¤Ç¡¢´ñÌ¯¤Ê¤ä¤ê¤«¤¿¤ò¤·¤Þ¤¹¡£ Îã¤¨¤Ð COM2 ¤ËÀÜÂ³¤µ¤ì¤¿¥â¥Ç¥à¤Î¾ì¹ç¤Ï /etc/rc.d/rc.local Ëô¤Ï /etc/rc.d/rc.serial ¤Î¤è¤¦¤Êµ¯Æ°¥¹¥¯¥ê¥×¥È¥Õ¥¡¥¤¥ë¤ÎÃæ¤Ç¡¢¼¡¤Î¤è¤¦¤Ê ¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤·¤Þ¤¹ - <itemize> <item> setserial /dev/ttyS1 spd_vhi  <item>PPPd ¥¹¥¯¥ê¥×¥È¤ÎÃæ¤Ç¡¢pppd ¤Î man ¥Ú¡¼¥¸¤Ë½¾¤Ã¤Æ speed "38400" ¤ò´Þ¤à¤è¤¦¤Ë¼ÂºÝ¤Î pppd ¼Â¹Ô¥é¥¤¥ó¤òÊÔ½¸¤·¤Æ¤¯¤À¤µ¤¤¡£ </itemize>   <item>2.2.x ¥«¡¼¥Í¥ë - 2.1.x ¤È 2.2.x ¤Î¥«¡¼¥Í¥ë¤ÏÎ¾Êý¶¦ 2.0.x ¥«¡¼¥Í¥ë¤È°ã¤¤¡¢¤³¤Î "spd_vhi" ÌäÂê¤Ï¤¢¤ê¤Þ¤»¤ó¡£ <itemize>   <item>¤Ç¤¹¤Î¤Ç¡¢ PPPd ¥¹¥¯¥ê¥×¥ÈÃæ¤Ç pppd ¤Î man ¥Ú¡¼¥¸¤Ë½¾¤¤¡¢ "115200" ¤Î¥·¥ê¥¢¥ëÅ¾Á÷Â®ÅÙ¤ò´Þ¤à¤è¤¦¤Ë¼ÂºÝ¤Î pppd ¥³¥Þ¥ó¥É¥é¥¤¥ó¤ò ÊÔ½¸¤·¤Æ¤¯¤À¤µ¤¤¡£ </itemize> </itemize> </itemize> <item>All interface types: </itemize>   <sect1>PORTFW ¤ò IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ç»È¤Ã¤Æ¤¤¤Þ¤¹¤¬¡¢¥é¥¤¥ó¤¬Ä¹¤¤´ÖÂÔ¤Á¾õÂÖ¤Ë ¤Ê¤ë¤ÈÀÚ¤ì¤Æ¤·¤Þ¤¤¤Þ¤¹¡£   DSL ¤«¥±¡¼¥Ö¥ë¥â¥Ç¥à¤Î¥æ¡¼¥¶¤Ê¤é¤Ð¡¢ÉÔ±¿¤Ë¤â¤³¤Î¸½¾Ý¤ÏÈó¾ï¤Ë°ìÈÌÅª¤Ç¤¹¡£ ´ðËÜÅª¤Ëµ¯¤³¤Ã¤Æ¤¤¤ë¤³¤È¤Ï¡¢ ISP ¤Ï»ÈÍÑÃæ¤ÎÂ¾¤ÎÀÜÂ³¤òÍ¥Àè¤·¤Æ¥µ¡¼¥Ó¥¹ ¤¹¤ë¤¿¤á¤Ë¡¢¤¢¤Ê¤¿¤ÎÀÜÂ³¤òÍ¥ÀèÅÙ¤ÎÈó¾ï¤ËÄã¤¤¥¥å¡¼¤ËÄÉ¤¤¤ä¤Ã¤Æ¤·¤Þ¤¦¤«¤é¤Ç¤¹¡£ ÌäÂê¤Ï¥æ¡¼¥¶¤Î DSL ¤ä¥±¡¼¥Ö¥ë¥â¥Ç¥àÀÜÂ³¤«¤é¤Î¥È¥é¥Õ¥£¥Ã¥¯¤¬ ISP ¤Î ¥Ï¡¼¥É¥¦¥¨¥¢¤òµ¯¤³¤¹¤Þ¤Ç¤Î´Ö¡¢¼ÂºÝ¤Ë¥¨¥ó¥É¥æ¡¼¥¶¤ÎÀÜÂ³¤¬»È¤¨¤Ê¤¯¤Ê¤Ã¤Æ ¤·¤Þ¤¦¤³¤È¤Ç¤¹¡£ <itemize>   <item>DSL ÀßÈ÷¤ÎÃæ¤Ë¤Ï¡¢»ÈÍÑ¤µ¤ì¤Æ¤¤¤Ê¤¤ÀÜÂ³¤òÀÚÃÇ¤·¤Æ¤·¤Þ¤¤¡¢ ¥¯¥é¥¤¥¢¥ó¥È¤¬ÀÜÂ³¤µ¤ì¤Æ¤¤¤ë¤«ÈÝ¤«¤ò 30 ÉÃ¤Ë°ìÅÙÄøÅÙ¤·¤«¥Á¥§¥Ã¥¯¤·¤Ê¤¤ ¤â¤Î¤â¤¢¤ê¤Þ¤¹¡£   <item>¥±¡¼¥Ö¥ë¥â¥Ç¥à¤ÎÀßÄê¤Ë¤è¤Ã¤Æ¤Ï¡¢»ÈÍÑ¤µ¤ì¤Æ¤¤¤Ê¤¤ÀÜÂ³¤òÄã¤¤ Í¥ÀèÅÙ¡ÚÌõÃí: priority queue¡Û¤ËÀßÄê¤·¡¢¥¯¥é¥¤¥¢¥ó¥È¤¬ÀÜÂ³¤µ¤ì¤Æ¤¤¤ë¤« ÈÝ¤«¤ò 1 Ê¬´Ö¤Ë 1 ²óÄøÅÙ¤·¤«¥Á¥§¥Ã¥¯¤·¤Ê¤¤¤â¤Î¤âÂ¸ºß¤·¤Þ¤¹¡£ </itemize>   ¤É¤¦¤·¤¿¤é¤¤¤¤¤Ç¤·¤ç¤¦¤«? 30 ÉÃ¤Ë°ìÅÙ ping ¤ò¥Ç¥Õ¥©¥ë¥È¥²¡¼¥È¥¦¥§¥¤¤ËÅê¤²¤Þ¤·¤ç¤¦¡£ ¤³¤ì¤ò¤ä¤ë¤Ë¤Ï /etc/rc.d/rc.local ¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤·¡¢¥Õ¥¡¥¤¥ë¤Î°ìÈÖ²¼¤Ë °Ê²¼¤òÉÕ¤±²Ã¤¨¤Æ¤¯¤À¤µ¤¤¡£ <code> ping -i 30 100.200.212.121 > /dev/null & </code>   100.200.212.121 ¤ò¼«Ê¬¤Î¥Ç¥Õ¥©¥ë¥È¡¦¥ë¡¼¥¿ (¾åÎ®¤Î¥ë¡¼¥¿) ¤ËÃÖ¤´¹¤¨¤Æ ¤¯¤À¤µ¤¤¡£ ¡ÚÌõÃí: ADSL °¿¤Ï¥±¡¼¥Ö¥ë¥â¥Ç¥àÅù¤Ç¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÀÜÂ³¤¹¤ëºÝ¤Ë¡¢¥×¥í¥Ð¥¤¥À Â¦¤«¤é¼«Æ°Åª¤Ë¥Ç¥Õ¥©¥ë¥È¥²¡¼¥È¥¦¥§¥¤¤¬³ä¤ê¿¶¤é¤ì¤ë¾ì¹ç¤Ï¡¢¤³¤Î¥¢¥É¥ì¥¹¤¬ ÀÜÂ³¤ÎÅÙËè¤Ë¿ï»þÊÑ¹¹¤µ¤ì¤ë²ÄÇ½À¤¬¤¢¤ë¤Î¤Ç¡¢Ãí°Õ¤¬É¬Í×¤Ç¤¹¡£ ¥×¥í¥Ð¥¤¥À¤¬Äó¼¨¤¹¤ëÀÜÂ³»ñÎÁ¤Ë¡¢¸ÇÄê¤Î¥Ç¥Õ¥©¥ë¥È¥²¡¼¥È¥¦¥§¥¤¤¬¼¨¤µ¤ì¤Æ ¤¤¤ë¾ì¹ç¤Ï¡¢¾åµ¸ÇÄê IP ¤ÎÊýË¡¤¬»È¤¨¤Þ¤¹¤¬¡¢¤½¤¦¤Ç¤Ê¤¤¾ì¹ç¤Ï¡¢ÀÜÂ³³ÎÎ© ¤ÎºÝ¤Ë¼Â¹Ô¤µ¤ì¤ë¥·¥§¥ë¥¹¥¯¥ê¥×¥È¤«¤é¡¢¥Ç¥Õ¥©¥ë¥È¥²¡¼¥È¥¦¥§¥¤¤Î IP ¥¢¥É¥ì¥¹ ¤ò½¦¤¤½Ð¤·¤Æ¡¢¾åµ¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£¡Û    <sect1>IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÆ°¤«¤¹¤³¤È¤¬¤Ç¤¤Þ¤·¤¿¤¬¡¢SYSLOG ¤Î¥í¥°¥Õ¥¡¥¤¥ë¤Ë ¤¢¤é¤æ¤ë¼ïÎà¤ÎÌ¯¤ÊÄÌÃÎ¤ä¥¨¥é¡¼¤ò¼õ¤±¼è¤Ã¤Æ¤¤¤Þ¤¹¡£ IPFWADM ¤ä IPCHAINS ¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥¨¥é¡¼¤ò¤É¤¦ÆÉ¤á¤Ð¤è¤¤¤Ç¤·¤ç¤¦¤«?   ¶²¤é¤¯¡¢³ÎÇ§¤¹¤Ù¤¶¦ÄÌ»ö¹à¤¬Æó¤Ä¤¢¤ê¤Þ¤¹ - <itemize>   <item><bf>¥Þ¥¹¥«¥ì¡¼¥É - ¼ºÇÔ¤·¤¿ TCP ¤Î¥Á¥§¥Ã¥¯¥µ¥à¥¨¥é¡¼ - </bf> ¤³¤Î¥¨¥é¡¼¤Ï¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥ÈÂ¦¤«¤éÍè¤ë¥Ñ¥±¥Ã¥È¤Î¥Ç¡¼¥¿ÉôÊ¬¤Ë¥¨¥é¡¼¤¬ ¤¢¤Ã¤¿»þ¤Ë¸«¤ë¤Ç¤·¤ç¤¦¤¬¡¢¤½¤ì°Ê³°¤Î»þ¤Ë¸«¤ë¤³¤È¤Ï¤Ê¤¤¤Ç¤·¤ç¤¦¡£ Linux ¥Ü¥Ã¥¯¥¹¤¬¤³¤Î¥Ñ¥±¥Ã¥È¤ò¼õ¿®¤·¤¿¤È¤¡¢¥Ñ¥±¥Ã¥È¤Î CRC ¤ò·×»»¤·¤Æ ¥¨¥é¡¼¤¬¤Ê¤¤¤«³Î¤«¤á¤Þ¤¹¡£ ¥Þ¥¤¥¯¥í¥½¥Õ¥È Windows Åù¤Î OS ¤Î¥Þ¥·¥ó¤Ç¤Ï¡¢Ã±¤Ë¥Ñ¥±¥Ã¥È¤ò¼Î¤Æ¤ë¤À¤± ¤Ç¤¹¤¬¡¢ Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¤³¤ì¤òÊó¹ð¤·¤Þ¤¹¡£ ¤â¤·¡¢¤¢¤Ê¤¿¤¬ PPP ¥ê¥ó¥¯¤ÇÂô»³¤ÎÊó¹ð¤ò¤ò¼õ¤±¤ë¤è¤¦¤Ê¤é¡¢Àè¤º¤³¤Î FAQ ¤Î Á°¤ÎÊý¤Ë¤¢¤ë "¥Þ¥¹¥«¥ì¡¼¥É¤¬ÃÙ¤¤" ¤Î¹à¤Ë½¾¤Ã¤Æ¤¯¤À¤µ¤¤¡£   <item>¤â¤·¾åµ¤ÎÁ´¤Æ¤ò¼Â¹Ô¤·¤Æ¤â²ò·è¤Ç¤¤Ê¤«¤Ã¤¿¾ì¹ç¤Ï¡¢ /etc/ppp/options ¥Õ¥¡¥¤¥ë¤Ë "-vj" ¤ò²Ã¤¨¤Æ¤«¤é PPPd ¤òºÆµ¯Æ°¤·¤Æ¤¯¤À¤µ¤¤¡£   <item><bf>¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥Ò¥Ã¥È</bf> - ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤ÇÅ¬Àµ¤Ê ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤òÈ÷¤¨¤ë¤È¡¢¤Ê¤ó¤ÈÂ¿¤¯¤Î¿Í¡¹¤¬¤¢¤Ê¤¿¤Î Linux ¥Ü¥Ã¥¯¥¹¤Ë ¿¯Æþ¤·¤è¤¦¤È¤·¤¿¤«¤Ë¶Ã¤¯¤Ç¤·¤ç¤¦¡£ ¤½¤·¤Æ¡¢¤³¤ì¤é¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥í¥°¤ÎÁ´¤Æ¤Ï²¿¤ò°ÕÌ£¤¹¤ë¤Î¤Ç¤·¤ç¤¦¤«?   <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - Section 10">¤ÎÊ¸½ñ¤«¤é - <![ %codes CDATA [ <verb>  ²¼¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ÎÃæ¤Ç¤Ï DENY ¤È REJECT ¤Î¥é¥¤¥óµÚ¤Ó¥Õ¥¡¥¤¥¢¡¼¥¦¥©¡¼¥ë¡¦¥Ò¥Ã¥È¤Î¥í¥°¤ò¼è¤ë¤¿¤á¤Ë "-l" (IPCHAINS¤ò»È¤¦¾ì¹ç¤Ï¾®Ê¸»ú¤Î "L") ¤Þ¤¿¤Ï "-o" (IPFWADM¤ò»È¤¦¾ì¹ç) ¤òÉÕ¤±¤¿¤¹¤Ù¤Æ¤Î¥é¥¤¥ó¤Î¥È¥é¥Õ¥£¥Ã¥¯¤Ï°Ê²¼¤Î¤É¤Á¤é¤«¤Î SYSLOG ¥á¥Ã¥»¡¼¥¸¥Õ¥¡¥¤¥ë¤Ë½ñ¤½Ð¤µ¤ì¤Þ¤¹¡£ °Ê²¼¤Ëµ¤¹¥ë¡¼¥ë¥»¥Ã¥ÈÃæ¡¢¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥Ò¥Ã¥È¤Î¥í¥°¤ò¼è¤ë°Ù¤Ë¡¢ DENY °¿¤Ï REJECT ¤Î¹Ô¤Ë¤Ï "-l" (IPCHAINS¤ò»È¤¦¾ì¹ç¡£¤³¤ì¤Ï¾®Ê¸»ú¤Î "L") ¤Þ¤¿¤Ï "-o" (IPFWADM¤ò»È¤¦¾ì¹ç) ¤¬ÉÕ¤µ¤ì¡¢¤³¤ì¤Ë¤Ò¤Ã¤«¤«¤Ã¤¿ ¥È¥é¥Õ¥£¥Ã¥¯¤ÏÁ´¤Æ°Ê²¼¤Ë¼¨¤¹ SYSLOG ¥á¥Ã¥»¡¼¥¸¥Õ¥¡¥¤¥ë¤Î¤¤¤º¤ì¤«¤Ë ½ñ¤½Ð¤µ¤ì¤Þ¤¹¡£ ¡ÚÌõÃí: ¡Ö¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥Ò¥Ã¥È¡×(firewall hit) ¤È¤Ï¡¢ DENY °¿¤Ï REJECT ¥ë¡¼¥ë¤ËÅ¬¹ç¤·¡¢¥Ñ¥±¥Ã¥È¤òÃ¡¤Íî¤·¤¿¸½¾Ý¤ò»Ø¤·¤Æ¤¤¤Þ¤¹¡£ Å¬ÀÚ¤ÊÆüËÜ¸ìÌõ¤¬»×¤¤ÉÕ¤«¤Ê¤«¤Ã¤¿¤³¤È¤È¡¢¤³¤Î¸å¤Ë²¿ÅÙ¤â½Ð¤ÆÍè¤Þ¤¹¤Î¤Ç¡¢ ´º¤¨¤ÆÆüËÜ¸ìÌõ¤Ë¤·¤Þ¤»¤ó¤Ç¤·¤¿¡£¡Û Redhat: /var/log Slackware: /var/adm ¤³¤ì¤é¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥í¥°¤Ï¤³¤Î¤è¤¦¤Ë¸«¤¨¤Þ¤¹¡£ - ¤³¤ì¤é¤Î¥Õ¥¡¥¤¥ë¤Î¤¤¤º¤ì¤«¤ËµÏ¿¤µ¤ì¤ë¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥í¥°¤Ï¡¢ ¤³¤Î¤è¤¦¤Ë¤Ê¤ë¤Ç¤·¤ç¤¦ - --------------------------------------------------------------------- IPFWADM: Feb 23 07:37:01 Roadrunner kernel: IP fw-in rej eth0 TCP 12.75.147.174:1633 100.200.0.212:23 L=44 S=0x00 I=54054 F=0x0040 T=254 IPCHAINS: Packet log: input DENY eth0 PROTO=17 12.75.147.174:1633 100.200.0.212:23 L=44 S=0x00 I=54054 F=0x0040 T=254 ---------------------------------------------------------------------  ¤³¤ÎÃ±¤Ê¤ë 1 ¹Ô¤ÎÃæ¤Ë¤¿¤¯¤µ¤ó¤Î¾ðÊó¤¬¤¢¤ê¤Þ¤¹¡£¤³¤ÎÎã¤ò²ò¤¤Û¤°¤·¤Æ¤¤¤¤Þ¤·¤ç¤¦¡£¤½¤Î¸å¡¢¼«Ê¬¤Î¥Õ¥¡¥¤¥¢¡¼¥¦¥©¡¼¥ë¥Ò¥Ã¥È¤ËÌá¤Ã¤Æ¤³¤ì¤òÆÉ¤ó¤À¤è¤¦¤ËÆÉ¤ó¤Ç¤ß¤Æ¤¯¤À¤µ¤¤¡£IPCHAINS ¥æ¡¼¥¶¡¼¤ÏÄ¾ÀÜÆÉ¤à¤³¤È¤¬¤Ç¤¤ë¤Î¤Ç¤³¤ÎÎã¤Ï IPFWADM ¤Î¤¿¤á¤Ë¤¢¤ê¤Þ¤¹¡£ ¤³¤Î¤¿¤Ã¤¿ 1 ¹Ô¤ÎÃæ¤ËÂô»³¤Î¾ðÊó¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤ÎÎã¤ò²ò¤¤Û¤°¤·¤Æ¤¤¤¤Þ¤·¤ç¤¦¡£ ¤½¤Î¸å¡¢¼«Ê¬¤Î¥í¥°¥Õ¥¡¥¤¥ë¤ËµÏ¿¤µ¤ì¤Æ¤¤¤ë¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥Ò¥Ã¥È ¤ËÌá¤Ã¤Æ¡¢¤³¤ì¤òÆÉ¤ó¤À¤è¤¦¤ËÆÉ¤ßÊÑ¤¨¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ IPCHAINS ¥æ¡¼¥¶¤ÏÄ¾ÀÜÆÉ¤à¤³¤È¤¬¤Ç¤¤ë¤Î¤Ç¡¢¤³¤ÎÎã¤Ï IPFWADM ¤Î°Ù¤Ë ¤¢¤ê¤Þ¤¹¡£ --------------  - ¤³¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Ï "Feb 23 07:37:01" ¤Ë¥Ò¥Ã¥È¤µ¤ì¤Þ¤·¤¿¡£ - ¤³¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥Ò¥Ã¥È¤Ï "Feb 23 07:37:01" ¤ËÀ¸¤¸¤Þ¤·¤¿¡£  - ¤³¤Î¥Ò¥Ã¥È¤Ï "RoadRunner" ¥³¥ó¥Ô¥å¡¼¥¿¤Ø¤Î¥Ò¥Ã¥È¤Ç¤¹¡£  - ¤³¤Î¥Ò¥Ã¥È¤Ï "IP" ¤Þ¤¿¤Ï TCP/IP ¥×¥í¥È¥³¥ë¤Ç¤¹¡£  - ¤³¤Î¥Ò¥Ã¥È¤Ï ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î IN ¤Ø¤Î¥Ò¥Ã¥È¤Ç¤¹¡£ ("fw-in") * Â¾¤Ë "fw-out"¤Ï OUT ¡¢ "fw-fwd" ¤Ï FORWARD ¤Ø¤Î¥Ò¥Ã¥È¤Ç¤¹¡£  - ¤³¤Î¥Ò¥Ã¥È¤Ï¤³¤³¤ÇµñÀä¡Ê "rejECTED"¡Ë¤µ¤ì¤Þ¤·¤¿¡£ * Â¾¤Î LOG ¤Ï "deny" ¤Þ¤¿¤Ï "accept"¤ÈÉ½¼¨¤µ¤ì¤Þ¤¹¡£  - ¤³¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¥Ò¥Ã¥È¤Ï "eth0" ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¾å¤Î¤â¤Î¤Ç¤¹¡£ (Internet link) - ¤³¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥Ò¥Ã¥È¤Ï "eth0" ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¾å¤Î ¤â¤Î¤Ç¤¹¡£ (Internet link)  - ¤³¤Î¥Ò¥Ã¥È¤Ï "TCP" ¥Ñ¥±¥Ã¥È¤Ç¤·¤¿¡£  - ¤³¤Î¥Ò¥Ã¥È¤Ï IP ¥¢¥É¥ì¥¹ "12.75.147.174" ¥ê¥¿¡¼¥ó¥Ý¡¼¥È "1633" ¤«¤é¤Ç¤¹¡£ - ¤³¤Î¥Ò¥Ã¥È¤Ï IP ¥¢¥É¥ì¥¹ "12.75.147.174" ¤ÎÊÖ¿®¥Ý¡¼¥È "1633" ¤«¤é Íè¤Þ¤·¤¿¡£  - ¤³¤Î¥Ò¥Ã¥È¤Ï¥¢¥É¥ì¥¹ "100.200.0.212" ¤Î¥Ý¡¼¥È "23" ¤¹¤Ê¤ï¤Á TELNET °¸¤Ç¤¹¡£ * ¤â¤· 23 ¤¬ TELNET ¥Ý¡¼¥È¤ÈÃÎ¤é¤Ê¤¤¤Ê¤é, /etc/services ¥Õ¥¡¥¤¥ë¤Ç ¤Û¤«¤Ë¤É¤ó¤Ê¥Ý¡¼¥È¤¬»È¤ï¤ì¤Æ¤¤¤ë¤«¸«¤Æ¤¯¤À¤µ¤¤¡£ - ¤³¤Î¥Ò¥Ã¥È¤Ï¥¢¥É¥ì¥¹ "100.200.0.212" ¤Î¥Ý¡¼¥È "23" ¤¹¤Ê¤ï¤Á TELNET °¸¤Ç¤¹¡£ * ¤â¤· 23 ¤¬ TELNET ¥Ý¡¼¥È¤ÈÃÎ¤é¤Ê¤¤¤Ê¤é, /etc/services ¥Õ¥¡¥¤¥ë¤ÇÂ¾¤Ë¤É¤ó¤Ê¥Ý¡¼¥È¤¬»È¤ï¤ì¤Æ¤¤¤ë¤«¸«¤Æ¤¯¤À¤µ¤¤¡£  - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ï "44" ¥Ð¥¤¥È¤ÎÄ¹¤µ¤Ç¤·¤¿¡£  - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ï "Type of Service" (TOS) ¤¬¥»¥Ã¥È¤µ¤ì¤Æ¤¤¤Þ¤»¤ó¤Ç¤·¤¿¡£ --¤³¤ì¤¬Íý²ò¤Ç¤¤Ê¤¯¤Æ¤â¿´ÇÛÍ×¤ê¤Þ¤»¤ó¡£.. ÃÎ¤ëÉ¬Í×¤Ï¤¢¤ê¤Þ¤»¤ó¡£ * ipchains ¥æ¡¼¥¶¡¼¤Ï TOS ¤òÆÀ¤ë¤Ë¤Ï¤³¤ì¤ò 4 ¤Ç³ä¤Ã¤Æ¤¯¤À¤µ¤¤¡£ - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ë¤Ï "Type of Service" (TOS) ¤¬¥»¥Ã¥È¤µ¤ì¤Æ ¤¤¤Þ¤»¤ó¤Ç¤·¤¿¡£ --¤³¤ì¤¬Íý²ò¤Ç¤¤Ê¤¯¤Æ¤â¿´ÇÛÍ×¤ê¤Þ¤»¤ó¡£.. ÃÎ¤ëÉ¬Í×¤Ï ¤¢¤ê¤Þ¤»¤ó¡£ * ipchains ¥æ¡¼¥¶¤¬ TOS ¤òÆÀ¤ë¤Ë¤Ï¡¢¤³¤ì¤ò 4 ¤Ç³ä¤Ã¤Æ¤¯¤À¤µ¤¤¡£  - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ï "IP ID" ÈÖ¹æ "18" ¤ò»ý¤Ã¤Æ¤¤¤Þ¤¹¡£ --¤³¤ì¤¬Íý²ò¤Ç¤¤Ê¤¯¤Æ¤â¿´ÇÛÍ×¤ê¤Þ¤»¤ó¡£.. ÃÎ¤ëÉ¬Í×¤Ï¤¢¤ê¤Þ¤»¤ó¡£ - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ï "IP ID" ÈÖ¹æ "18" ¤ò»ý¤Ã¤Æ¤¤¤Þ¤·¤¿¡£ --¤³¤ì¤¬Íý²ò¤Ç¤¤Ê¤¯¤Æ¤â¿´ÇÛÍ×¤ê¤Þ¤»¤ó¡£.. ÃÎ¤ëÉ¬Í×¤Ï ¤¢¤ê¤Þ¤»¤ó¡£  - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ï "0x0000" ¤Î¥Õ¥é¥°¤ò»ý¤Ä TCP/IP ¥Ñ¥±¥Ã¥È¤ò´Þ¤ó¤À 16bit fragment offset ¤ò»ý¤Ã¤Æ¤¤¤Þ¤¹¡£ --¤³¤ì¤¬Íý²ò¤Ç¤¤Ê¤¯¤Æ¤â¿´ÇÛÍ×¤ê¤Þ¤»¤ó¡£.. ÃÎ¤ëÉ¬Í×¤Ï¤¢¤ê¤Þ¤»¤ó¡£ * "0x2..." ¤Þ¤¿¤Ï "0x3..." ¤Ç»Ï¤Þ¤ëÃÍ¤Ï "More Fragments" bit ¤¬ ¥»¥Ã¥È¤µ¤ì¤Æ¤¤¤Æ¡¢Ê¬³ä¤µ¤ì¤¿¥Ñ¥±¥Ã¥È¤ò°ì¤Ä¤ÎÂç¤¤Ê¥Ñ¥±¥Ã¥È¤Ë ´°À®¤µ¤»¤ë¤¿¤á¤ÎÊÌ¤Î¥Ñ¥±¥Ã¥È¤¬Íè¤Þ¤¹¡£ * "0x4..." ¤Þ¤¿¤Ï "0x5..." ¤Ç»Ï¤Þ¤ëÃÍ¤Ï "Don't Fragment"bit ¤¬ ¥»¥Ã¥È¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ * ¤³¤ì°Ê³°¤ÎÃÍ¤Ï¸µ¤ÎÂç¤¤Ê¥Ñ¥±¥Ã¥È¤òºÆ¸½¤¹¤ë¤¿¤á¤Ë¸å¤Ç»È¤ï¤ì¤ë ¡¡¡Ê 8 ¤Ç³ä¤é¤ì¤¿¡ËFragment offset¤Ç¤¹¡£ - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ë¤Ï "0x0000" ¤Î¥Õ¥é¥°¤ò»ý¤Ä TCP/IP ¥Ñ¥±¥Ã¥È¤ò´Þ¤ó¤À 16bit fragment offset ¤¬ÀßÄê¤µ¤ì¤Æ¤¤¤Þ¤·¤¿¡£ --¤³¤ì¤¬Íý²ò¤Ç¤¤Ê¤¯¤Æ¤â¿´ÇÛÍ×¤ê¤Þ¤»¤ó¡£.. ÃÎ¤ëÉ¬Í×¤Ï ¤¢¤ê¤Þ¤»¤ó¡£ * "0x2..." ¤Þ¤¿¤Ï "0x3..." ¤Ç»Ï¤Þ¤ëÃÍ¤Ï "More Fragments" bit ¤¬¥»¥Ã¥È¤µ¤ì¤Æ¤¤¤Æ¡¢Ê¬³ä¤µ¤ì¤¿¥Ñ¥±¥Ã¥È¤ò°ì¤Ä¤ÎÂç¤¤Ê ¥Ñ¥±¥Ã¥È¤Ë´°À®¤µ¤»¤ë°Ù¤ÎÊÌ¤Î¥Ñ¥±¥Ã¥È¤¬Íè¤ë¤³¤È¤ò°ÕÌ£¤·¤Þ¤¹¡£ * "0x4..." ¤Þ¤¿¤Ï "0x5..." ¤Ç»Ï¤Þ¤ëÃÍ¤Ï "Don't Fragment" bit ¤¬¥»¥Ã¥È¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ * ¤³¤ì°Ê³°¤ÎÃÍ¤Ï¸µ¤ÎÂç¤¤Ê¥Ñ¥±¥Ã¥È¤òºÆ¸½¤¹¤ë¤¿¤á¤Ë¸å¤Ç»È¤ï¤ì¤ë ¡¡(8 ¤Ç³ä¤é¤ì¤¿) ¥Õ¥é¥°¥á¥ó¥È¥ª¥Õ¥»¥Ã¥È¤Ç¤¹¡£  - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ï 20 ¤Î TimeToLive (TTL) ¤ò»ý¤Ã¤Æ¤¤¤Þ¤¹¡£ * ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Î¤¹¤Ù¤Æ¤Î¥Û¥Ã¥×¤Ï¤³¤Î¿ô¤«¤é (1) ¤ò°ú¤¤Þ¤¹¡£ ¡¡ÄÌ¾ï¡¢¥Ñ¥±¥Ã¥È¤Ï (255) ¤È¤¤¤¦¿ô¤Ç»Ï¤Þ¤ê¤Þ¤¹¡£¤½¤·¤Æ¤³¤Î¿ô¤¬ (0) ¤ËÃ£¤¹¤ë¤È¼ÂºÝ¤Ï¥Ñ¥±¥Ã¥È¤¬¼º¤ï¤ì¡¢ºï½ü¤µ¤ì¤ë¤³¤È¤ò°ÕÌ£¤·¤Þ¤¹¡£ - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ë¤Ï TimeToLive (TTL) ¤È¤·¤Æ 20 ¤¬ÀßÄê¤µ¤ì¤Æ¤¤¤Þ¤·¤¿¡£ * ¥Ñ¥±¥Ã¥È¤¬¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Î·ÐÏ©¾å¤Ë¤¢¤ëÁ´¤Æ¤Î¥ë¡¼¥¿¤òÄÌ²á ¤¹¤ë¡ÚÌõÃí: hop¡ÛºÝ¤Ë¡¢¤³¤Î¿ô¤«¤é (1) ¤¬°ú¤«¤ì¤Þ¤¹¡£ ¡¡ÄÌ¾ï¡¢¥Ñ¥±¥Ã¥È¤Ï (255) ¤È¤¤¤¦¿ô¤Ç»Ï¤Þ¤ê¤Þ¤¹¡£¤½¤·¤Æ¤³¤Î¿ô¤¬ (0) ¤ËÃ£¤¹¤ë¤È¡¢¼ÂºÝ¤Ï¥Ñ¥±¥Ã¥È¤¬¼º¤ï¤ì¡¢ºï½ü¤µ¤ì¤ë¤³¤È¤ò°ÕÌ£ ¤·¤Þ¤¹¡£  </verb> ]]> <verb> °Ê²¼¤Ëµ¤¹¥ë¡¼¥ë¥»¥Ã¥ÈÃæ¡¢¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥Ò¥Ã¥È¤Î¥í¥°¤ò¼è¤ë°Ù¤Ë¡¢ DENY °¿¤Ï REJECT ¤Î¹Ô¤Ë¤Ï "-l" (IPCHAINS¤ò»È¤¦¾ì¹ç¡£¤³¤ì¤Ï¾®Ê¸»ú¤Î "L") ¤Þ¤¿¤Ï "-o" (IPFWADM¤ò»È¤¦¾ì¹ç) ¤¬ÉÕ¤µ¤ì¡¢¤³¤ì¤Ë¤Ò¤Ã¤«¤«¤Ã¤¿ ¥È¥é¥Õ¥£¥Ã¥¯¤ÏÁ´¤Æ°Ê²¼¤Ë¼¨¤¹ SYSLOG ¥á¥Ã¥»¡¼¥¸¥Õ¥¡¥¤¥ë¤Î¤¤¤º¤ì¤«¤Ë ½ñ¤½Ð¤µ¤ì¤Þ¤¹¡£ ¡ÚÌõÃí: ¡Ö¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥Ò¥Ã¥È¡×(firewall hit) ¤È¤Ï¡¢ DENY °¿¤Ï REJECT ¥ë¡¼¥ë¤ËÅ¬¹ç¤·¡¢¥Ñ¥±¥Ã¥È¤òÃ¡¤Íî¤·¤¿¸½¾Ý¤ò»Ø¤·¤Æ¤¤¤Þ¤¹¡£ Å¬ÀÚ¤ÊÆüËÜ¸ìÌõ¤¬»×¤¤ÉÕ¤«¤Ê¤«¤Ã¤¿¤³¤È¤È¡¢¤³¤Î¸å¤Ë²¿ÅÙ¤â½Ð¤ÆÍè¤Þ¤¹¤Î¤Ç¡¢ ´º¤¨¤ÆÆüËÜ¸ìÌõ¤Ë¤·¤Þ¤»¤ó¤Ç¤·¤¿¡£¡Û Redhat: /var/log Slackware: /var/adm ¤³¤ì¤é¤Î¥Õ¥¡¥¤¥ë¤Î¤¤¤º¤ì¤«¤ËµÏ¿¤µ¤ì¤ë¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥í¥°¤Ï¡¢ ¤³¤Î¤è¤¦¤Ë¤Ê¤ë¤Ç¤·¤ç¤¦ - --------------------------------------------------------------------- IPFWADM: Feb 23 07:37:01 Roadrunner kernel: IP fw-in rej eth0 TCP 12.75.147.174:1633 100.200.0.212:23 L=44 S=0x00 I=54054 F=0x0040 T=254 IPCHAINS: Packet log: input DENY eth0 PROTO=17 12.75.147.174:1633 100.200.0.212:23 L=44 S=0x00 I=54054 F=0x0040 T=254 --------------------------------------------------------------------- ¤³¤Î¤¿¤Ã¤¿ 1 ¹Ô¤ÎÃæ¤ËÂô»³¤Î¾ðÊó¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤ÎÎã¤ò²ò¤¤Û¤°¤·¤Æ¤¤¤¤Þ¤·¤ç¤¦¡£ ¤½¤Î¸å¡¢¼«Ê¬¤Î¥í¥°¥Õ¥¡¥¤¥ë¤ËµÏ¿¤µ¤ì¤Æ¤¤¤ë¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥Ò¥Ã¥È ¤ËÌá¤Ã¤Æ¡¢¤³¤ì¤òÆÉ¤ó¤À¤è¤¦¤ËÆÉ¤ßÊÑ¤¨¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ IPCHAINS ¥æ¡¼¥¶¤ÏÄ¾ÀÜÆÉ¤à¤³¤È¤¬¤Ç¤¤ë¤Î¤Ç¡¢¤³¤ÎÎã¤Ï IPFWADM ¤Î°Ù¤Ë ¤¢¤ê¤Þ¤¹¡£ -------------- - ¤³¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥Ò¥Ã¥È¤Ï "Feb 23 07:37:01" ¤ËÀ¸¤¸¤Þ¤·¤¿¡£ - ¤³¤Î¥Ò¥Ã¥È¤Ï "RoadRunner" ¥³¥ó¥Ô¥å¡¼¥¿¤Ø¤Î¥Ò¥Ã¥È¤Ç¤¹¡£ - ¤³¤Î¥Ò¥Ã¥È¤Ï "IP" ¤Þ¤¿¤Ï TCP/IP ¥×¥í¥È¥³¥ë¤Ç¤¹¡£ - ¤³¤Î¥Ò¥Ã¥È¤Ï ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î IN ¤Ø¤Î¥Ò¥Ã¥È¤Ç¤¹¡£ ("fw-in") * Â¾¤Ë "fw-out"¤Ï OUT ¡¢ "fw-fwd" ¤Ï FORWARD ¤Ø¤Î¥Ò¥Ã¥È¤Ç¤¹¡£ - ¤³¤Î¥Ò¥Ã¥È¤Ï¤³¤³¤ÇµñÀä¡Ê "rejECTED"¡Ë¤µ¤ì¤Þ¤·¤¿¡£ * Â¾¤Î LOG ¤Ï "deny" ¤Þ¤¿¤Ï "accept"¤ÈÉ½¼¨¤µ¤ì¤Þ¤¹¡£ - ¤³¤Î¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥Ò¥Ã¥È¤Ï "eth0" ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¾å¤Î ¤â¤Î¤Ç¤¹¡£ (Internet link) - ¤³¤Î¥Ò¥Ã¥È¤Ï "TCP" ¥Ñ¥±¥Ã¥È¤Ç¤·¤¿¡£ - ¤³¤Î¥Ò¥Ã¥È¤Ï IP ¥¢¥É¥ì¥¹ "12.75.147.174" ¤ÎÊÖ¿®¥Ý¡¼¥È "1633" ¤«¤é Íè¤Þ¤·¤¿¡£ - ¤³¤Î¥Ò¥Ã¥È¤Ï¥¢¥É¥ì¥¹ "100.200.0.212" ¤Î¥Ý¡¼¥È "23" ¤¹¤Ê¤ï¤Á TELNET °¸¤Ç¤¹¡£ * ¤â¤· 23 ¤¬ TELNET ¥Ý¡¼¥È¤ÈÃÎ¤é¤Ê¤¤¤Ê¤é, /etc/services ¥Õ¥¡¥¤¥ë¤ÇÂ¾¤Ë¤É¤ó¤Ê¥Ý¡¼¥È¤¬»È¤ï¤ì¤Æ¤¤¤ë¤«¸«¤Æ¤¯¤À¤µ¤¤¡£ - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ï "44" ¥Ð¥¤¥È¤ÎÄ¹¤µ¤Ç¤·¤¿¡£ - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ë¤Ï "Type of Service" (TOS) ¤¬¥»¥Ã¥È¤µ¤ì¤Æ ¤¤¤Þ¤»¤ó¤Ç¤·¤¿¡£ --¤³¤ì¤¬Íý²ò¤Ç¤¤Ê¤¯¤Æ¤â¿´ÇÛÍ×¤ê¤Þ¤»¤ó¡£.. ÃÎ¤ëÉ¬Í×¤Ï ¤¢¤ê¤Þ¤»¤ó¡£ * ipchains ¥æ¡¼¥¶¤¬ TOS ¤òÆÀ¤ë¤Ë¤Ï¡¢¤³¤ì¤ò 4 ¤Ç³ä¤Ã¤Æ¤¯¤À¤µ¤¤¡£ - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ï "IP ID" ÈÖ¹æ "18" ¤ò»ý¤Ã¤Æ¤¤¤Þ¤·¤¿¡£ --¤³¤ì¤¬Íý²ò¤Ç¤¤Ê¤¯¤Æ¤â¿´ÇÛÍ×¤ê¤Þ¤»¤ó¡£.. ÃÎ¤ëÉ¬Í×¤Ï ¤¢¤ê¤Þ¤»¤ó¡£ - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ë¤Ï "0x0000" ¤Î¥Õ¥é¥°¤ò»ý¤Ä TCP/IP ¥Ñ¥±¥Ã¥È¤ò´Þ¤ó¤À 16bit fragment offset ¤¬ÀßÄê¤µ¤ì¤Æ¤¤¤Þ¤·¤¿¡£ --¤³¤ì¤¬Íý²ò¤Ç¤¤Ê¤¯¤Æ¤â¿´ÇÛÍ×¤ê¤Þ¤»¤ó¡£.. ÃÎ¤ëÉ¬Í×¤Ï ¤¢¤ê¤Þ¤»¤ó¡£ * "0x2..." ¤Þ¤¿¤Ï "0x3..." ¤Ç»Ï¤Þ¤ëÃÍ¤Ï "More Fragments" bit ¤¬¥»¥Ã¥È¤µ¤ì¤Æ¤¤¤Æ¡¢Ê¬³ä¤µ¤ì¤¿¥Ñ¥±¥Ã¥È¤ò°ì¤Ä¤ÎÂç¤¤Ê ¥Ñ¥±¥Ã¥È¤Ë´°À®¤µ¤»¤ë°Ù¤ÎÊÌ¤Î¥Ñ¥±¥Ã¥È¤¬Íè¤ë¤³¤È¤ò°ÕÌ£¤·¤Þ¤¹¡£ * "0x4..." ¤Þ¤¿¤Ï "0x5..." ¤Ç»Ï¤Þ¤ëÃÍ¤Ï "Don't Fragment" bit ¤¬¥»¥Ã¥È¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ * ¤³¤ì°Ê³°¤ÎÃÍ¤Ï¸µ¤ÎÂç¤¤Ê¥Ñ¥±¥Ã¥È¤òºÆ¸½¤¹¤ë¤¿¤á¤Ë¸å¤Ç»È¤ï¤ì¤ë ¡¡(8 ¤Ç³ä¤é¤ì¤¿) ¥Õ¥é¥°¥á¥ó¥È¥ª¥Õ¥»¥Ã¥È¤Ç¤¹¡£ - ¤³¤Î¥Ñ¥±¥Ã¥È¤Ë¤Ï TimeToLive (TTL) ¤È¤·¤Æ 20 ¤¬ÀßÄê¤µ¤ì¤Æ¤¤¤Þ¤·¤¿¡£ * ¥Ñ¥±¥Ã¥È¤¬¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Î·ÐÏ©¾å¤Ë¤¢¤ëÁ´¤Æ¤Î¥ë¡¼¥¿¤òÄÌ²á ¤¹¤ë¡ÚÌõÃí: hop¡ÛºÝ¤Ë¡¢¤³¤Î¿ô¤«¤é (1) ¤¬°ú¤«¤ì¤Þ¤¹¡£ ¡¡ÄÌ¾ï¡¢¥Ñ¥±¥Ã¥È¤Ï (255) ¤È¤¤¤¦¿ô¤Ç»Ï¤Þ¤ê¤Þ¤¹¡£¤½¤·¤Æ¤³¤Î¿ô¤¬ (0) ¤ËÃ£¤¹¤ë¤È¡¢¼ÂºÝ¤Ï¥Ñ¥±¥Ã¥È¤¬¼º¤ï¤ì¡¢ºï½ü¤µ¤ì¤ë¤³¤È¤ò°ÕÌ£ ¤·¤Þ¤¹¡£ </verb> </itemize>   <sect1>¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥æ¡¼¥¶¤¬Ä¾ÀÜ¤ËÆâÉô¥Þ¥¹¥«¥ì¡¼¥É¡¦¥¯¥é¥¤¥¢¥ó¥È¤ÈÏ¢Íí¤ò ¼è¤ë¤³¤È¤¬¤Ç¤¤ë¤è¤¦¤Ë IP ¥Þ¥¹¥«¥ì¡¼¥É¤òÀßÄê¤Ç¤¤Þ¤¹¤«?  ¤Ï¤¤! IPPORTFW ¤ò»È¤¨¤Ð¡¢Á´Éô¤Î¤â¤·¤¯¤Ï¾¯¿ô¤Î·è¤Þ¤Ã¤¿¥¤¥ó¥¿¡¼¥Í¥Ã¥È¥Û¥¹¥È¤¬ ¥Þ¥¹¥«¥ì¡¼¥ÉÀÜÂ³¤µ¤ì¤¿¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤ÎÇ¤°Õ¤Î¥³¥ó¥Ô¥å¡¼¥¿¤Ë ÀÜÂ³¤Ç¤¤ë¤è¤¦¤ËÀßÄê¤¹¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ <bf>¤³¤Î¥È¥Ô¥Ã¥¯¤Ï¤³¤ÎHOWTO¤Î <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤Ç´°Á´¤ËÌÖÍå¤µ¤ì¤Æ¤¤¤Þ¤¹¡£</bf> <label id="No-Free-Ports">   <sect1>SYSLOG ¥Õ¥¡¥¤¥ë¤Ë "kernel: ip_masq_new(proto=UDP): no free ports." ¤Î ¥á¥Ã¥»¡¼¥¸¤¬¤¢¤ê¤Þ¤¹¡£ ¤É¤¦¤·¤¿¤Î¤Ç¤·¤ç¤¦?   ¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥³¥ó¥Ô¥å¡¼¥¿¤Î 1 ¤Ä¤¬¡¢ ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë¸þ¤±¤Æ°Û¾ï¤ËÂç¤¤Ê¿ô¤Î¥Ñ¥±¥Ã¥È¤òÈ¯À¸¤·¤Æ¤¤¤Þ¤¹¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥µ¡¼¥Ð¤¬¥Þ¥¹¥«¥ì¡¼¥É¡¦¥Æ¡¼¥Ö¥ë¤òºî¤Ã¤Æ¡¢ ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Ë¤³¤ì¤é¤Î¥Ñ¥±¥Ã¥È¤òÅ¾Á÷¤¹¤ë¤È¤¤Î¥Æ¡¼¥Ö¥ë¤¬µÞÂ®¤Ë ½ñ¤«¤ì¤Æ¤¤¤Þ¤¹¡£ ¥Æ¡¼¥Ö¥ë¤¬ËþÇÕ¤Ë¤Ê¤ë¤È¤³¤Î¥¨¥é¡¼¤¬À¸¤¸¤Þ¤¹¡£   »ä¤¬ÃÎ¤Ã¤Æ¤¤¤ë °ì»þÅª¤Ë¤³¤Î¾õÂÖ¤òºî¤ê½Ð¤¹¤¿¤À°ì¤Ä¤Î¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤Ï¡¢ ¥²¡¼¥à¥×¥í¥°¥é¥à¤Î "GameSpy" ¤Ç¤¹¡£ ¤Ê¤¼¤Ç¤·¤ç¤¦¤«? Gamespy ¤Ï¥µ¡¼¥Ð¥ê¥¹¥È¤òºî¤Ã¤Æ¥ê¥¹¥È¤Ë¤¢¤ë¤¹¤Ù¤Æ¤Î¿ôÀé¤â¤Î¥µ¡¼¥Ð¤Ë ping ¤òÂÇ¤Á¤Þ¤¹¡£ ¤³¤Î ping ¤òÂÇ¤Ä¤³¤È¤Ë¤è¤ê¡¢Èó¾ï¤ËÃ»¤¤»þ´ÖÆâ¤Ë¿ôËü¤â¤ÎµÞÂ®¤ÊÀÜÂ³¤ò ºî¤ê¤Þ¤¹¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É ¤Î¥¿¥¤¥à¥¢¥¦¥È¤Ë¤è¤Ã¤Æ¤³¤Î¥»¥Ã¥·¥ç¥ó¤¬¥¿¥¤¥à¥¢¥¦¥È¤¹¤ë¤Þ¤Ç¡¢ ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥Æ¡¼¥Ö¥ë¤ÏËþÇÕ¤Ë¤Ê¤ê¤Þ¤¹¡£   ¤É¤¦¤·¤¿¤é¤¤¤¤¤Ç¤·¤ç¤¦¤«? ¸½¼ÂÅª¤Ë¤Ï¡¢¤³¤Î¤è¤¦¤Ê¥×¥í¥°¥é¥à¤ò»ÈÍÑ¤·¤Ê¤¤¤³¤È¤Ç¤¹¡£ ¤â¤·¥í¥°¤«¤é¤³¤Î¤è¤¦¤Ê¥¨¥é¡¼¤ò¸«¤Ä¤±¤¿¤é¡¢¤½¤Î¸¶°ø¤Ë¤Ê¤Ã¤Æ¤¤¤ë¥×¥í¥°¥é¥à¤ò ¸«¤Ä¤±¤Æ¡¢»È¤¦¤Î¤ò»ß¤á¤Æ¤¯¤À¤µ¤¤¡£ ¤â¤·ËÜÅö¤Ë GameSpy ¤¬¹¥¤¤Ê¤é¡¢¥µ¡¼¥Ð¡¦¥ê¥Õ¥ì¥Ã¥·¥å¤À¤±¤Ï¹Ô¤ï¤Ê¤¤¤Ç¤¯¤À¤µ¤¤¡£ ¤È¤Ë¤«¤¯¡¢¤³¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥×¥í¥°¥é¥à¤Î¼Â¹Ô¤ò¤ä¤á¤ì¤Ð¡¢¤³¤Î ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥¨¥é¡¼¤Ï¥Þ¥¹¥«¥ì¡¼¥É¡¦¥Æ¡¼¥Ö¥ë¤ÎÀÜÂ³¥¿¥¤¥à¥¢¥¦¥È¤Ë¤è¤ê¡¢ ¼«Á³¤Ë²ò¾Ã¤·¤Þ¤¹¡£   <sect1>IPPORTFW ¤ò»È¤ª¤¦¤È¤¹¤ë¤È "ipfwadm: setsockopt failed: Protocol not available" ¤È¤¤¤¦¥¨¥é¡¼¤¬½Ð¤Þ¤¹¡£   ¤â¤·¡¢ "ipfwadm: setsockopt failed: Protocol not available" ¡ÚÌõÃí: "ipfwadm: setsockopt ¤¬¼ºÇÔ: ¥×¥í¥È¥³¥ë¤ÏÌµ¸ú¤Ç¤¹"¡Û ¤È¤¤¤¦¥¨¥é¡¼¥á¥Ã¥»¡¼¥¸¤¬½Ð¤ë¤Ê¤é¡¢¿·¤·¤¤¥«¡¼¥Í¥ë¤¬Æ°ºî¤·¤Æ¤¤¤Þ¤»¤ó¡£ ¿·¤·¤¤¥«¡¼¥Í¥ë¤Ë°Ü¹Ô¤·¤¿»ö¤ò³ÎÇ§¤·¡¢LILO ¤òºÆ¼Â¹Ô¤·¤Æ¤«¤é¤â¤¦°ìÅÙºÆµ¯Æ°¤·¤Æ ¤¯¤À¤µ¤¤¡£  ¾Ü¤·¤¯¤Ï <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ÎºÇ¸å¤Î¤Û¤¦¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£    <sect1>( SAMBA ) - Microsoft ¥Õ¥¡¥¤¥ë¤È¥×¥ê¥ó¥¿¶¦ÍÑ (File and Print Sharing) ¤È Microsoft ¥É¥á¥¤¥ó¥¯¥é¥¤¥¢¥ó¥È¤¬ IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÇÆ°ºî¤·¤Þ¤»¤ó¡£   Microsoft ¤Î SMB ¥×¥í¥È¥³¥ë¤òÅ¬ÀÚ¤Ë¥µ¥Ý¡¼¥È¤¹¤ë¤Ë¤Ï¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦ ¥â¥¸¥å¡¼¥ë¤¬½ñ¤«¤ì¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¤¬¡¢3 ¤Ä¤Î¼Â¹Ô²ÄÇ½¤ÊÊýË¡¤¬¤¢¤ê¤Þ¤¹¡£ ¾ÜºÙ¤Ï <htmlurl url="http://support.microsoft.com/support/kb/articles/q172/2/27.asp" name="this Microsoft KnowledgeBase article"> ¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£   ºÇ½é¤ÎÊýË¡¤Ï <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ò»²¹Í¤Ë¤·¤Æ IPPORTFW ¤òÀßÄê¤·¡¢ TCP ¥Ý¡¼¥È¤Î 137, 138, 139 ÈÖ¤òÆâÉô¤Î Windows ¥Þ¥·¥ó¤Î IP ¥¢¥É¥ì¥¹¤Ë ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥É¤·¤Þ¤¹¡£ ¤³¤ì¤Ç¤âÆ°ºî¤·¤Þ¤¹¤¬¡¢¤³¤ÎÊýË¡¤Ç¤ÏÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Î¥Þ¥·¥ó¤Î¤¦¤Á¤Î 1Âæ ¤Ç¤·¤«Æ°ºî¤·¤Þ¤»¤ó¡£   Âè 2 ¤Î²ò·èË¡¤Ï¡¢ Linux ¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¾å¤Ç <htmlurl url="http://www.samba.org" name="Samba"> ¤ò¥¤¥ó¥¹¥È¡¼¥ë¤·¡¢ÀßÄê¤¹¤ë»ö¤Ç¤¹¡£ Samba ¤¬Æ°ºî¤¹¤ë¤Ê¤é¡¢ Samba ¥µ¡¼¥Ð¾å¤ËÆâÉô¤Î Windows ¤Î¥Õ¥¡¥¤¥ë¤È ¥×¥ê¥ó¥¿¤Î¶¦Í (Windows File and Print shares) ¤ò¥Þ¥Ã¥Ô¥ó¥°¤Ç¤¤Þ¤¹¡£ ¤½¤ì¤«¤é¿·¤·¤¯¥Þ¥¦¥ó¥È¤µ¤ì¤¿ SMB ¶¦Í¤ò¡¢Á´¤Æ¤Î³°Éô¥¯¥é¥¤¥¢¥ó¥È¤Ë ¥Þ¥¦¥ó¥È¤Ç¤¤Þ¤¹¡£ Samba ¤ÎÀßÄêÊýË¡¤Ï Linux Documentation Project ¤ÎÃæ¤Ë¤¢¤ë HOWTO ¤Ë¤Æ ´°Á´¤ËÌÖÍå¤µ¤ì¤Æ¤ª¤ê¡¢¤Þ¤¿¤³¤ì¤ÈÆ±ÍÍ¤Ë TrinityOS ¤ÎÊ¸½ñ¤Ë¤â¤¢¤ê¤Þ¤¹¡£   Âè 3 ¤Î²ò·èË¡¤Ï¡¢2 Âæ¤Î¥¦¥¤¥ó¥É¥¦¥º¥Þ¥·¥ó´Ö¤Ç¡¢°¿¤Ï 2 ¤Ä¤Î¥Í¥Ã¥È¥ï¡¼¥¯´Ö¤Ç VPN (²¾ÁÛ¥×¥é¥¤¥Ù¡¼¥È¡¦¥Í¥Ã¥È¥ï¡¼¥¯) ¤ò·ÁÀ®¤¹¤ë¤³¤È¤Ç¤¹¡£ ¤³¤ì¤Ï PPTP ·ÐÍ³¤« IPSEC VPN ¤Ë¤è¤ë²ò·èÊýË¡¤Î¤É¤Á¤é¤Ç¤â¹Ô¤¦¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ Linux ÍÑ¤Î <ref id="PPTP"> ¥Ñ¥Ã¥Á¤¬¤¢¤ê¤Þ¤¹¤·¡¢IPSEC ¤Î¼ÂÁõ¤Ï 2.0.x ¤È 2.2.x ¤Î¤É¤Á¤é¤Î¥«¡¼¥Í¥ë¤Ç¤â²ÄÇ½¤Ç¤¹¡£ ¤³¤Î²ò·èË¡¤¬¶²¤é¤¯ 3 ¤Ä¤ÎÁ´¤Æ¤Î²ò·èË¡¤ÎÃæ¤ÇºÇ¤â³Î¼Â¤ÇºÇ¤â°ÂÁ´¤ÊÊýË¡¤Ë ¤Ê¤ë¤Ç¤·¤ç¤¦¡£   ¤³¤ì¤é¤Î²ò·èÊýË¡¤ÎÁ´ËÆ¤Ï¡¢¤³¤Î HOWTO ¤Ç¤ÏÌÖÍå¤µ¤ì¤Æ¤¤¤Þ¤»¤ó¡£ IPSEC ¤Î¥Ø¥ë¥×¤Ï TrinityOS ¤ÎÊ¸½ñ¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£ ¹¹¤ËÂ¿¤¯¤Î¾ðÊó¤òÆÀ¤¿¤¤¤Ê¤é¡¢ JJohn Hardin ¤Î PPTP ¤Î¥Ú¡¼¥¸¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£   ¤Þ¤¿¡¢ Microsoft ¤Î SMB ¥×¥í¥È¥³¥ë¤Ï¥»¥¥å¥ê¥Æ¥£¾åÈó¾ï¤ËÌäÂê¤¬ ¤¢¤ë¤³¤È¤òÍý²ò¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤Î¤¿¤á¡¢ Microsoft ¥Õ¥¡¥¤¥ë¤È¥×¥ê¥ó¥¿¤Î¶¦Í (File and Print sharing) ¤ä Windows ¥É¥á¥¤¥ó¥í¥°¥¤¥ó¤ò¡¢¥¤¥ó¥¿¡¼¥Í¥Ã¥È¾å¤Ç°Å¹æ²½¤µ¤ì¤Ê¤¤¥È¥é¥Õ¥£¥Ã¥¯¤Î ¤Þ¤Þ»È¤¦¤³¤È¤ÏÈó¾ï¤Ë´í¸±¤Ç¤¹¡£   <sect1>( IDENT ) - IRC ¤¬¥Þ¥¹¥«¥ì¡¼¥É¡¦¥¯¥é¥¤¥¢¥ó¥È¤Î IRC ¥æ¡¼¥¶¤Ç¤¦¤Þ¤¯ Æ°ºî¤·¤Þ¤»¤ó¡£ ¤Ê¤¼¤Ç¤·¤ç¤¦¤«?   ºÇ¤â²ÄÇ½À¤¬¹â¤¤¸¶°ø¤Ï¡¢Â¿¤¯¤Î Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ë¤ª¤¤¤Æ¶¦ÄÌ¤Ë ÁõÈ÷¤µ¤ì¤Æ¤¤¤ë IDENT, ¤¹¤Ê¤ï¤Á "Identity" ¥µ¡¼¥Ð¤Ï¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦ ¥ê¥ó¥¯¤ËÂÐ½è¤Ç¤¤Ê¤¤¤³¤È¤Ç¤¹¡£ ¤Ç¤â¿´ÇÛ¤ÏÌµÍÑ¤Ç¤¹¡£ Linux ¤ÇÆ°ºî¤¹¤ë¡¢¤³¤ì¤ËÂÐ±þ¤Ç¤¤ë IDENT ¥×¥í¥°¥é¥à¤¬Â¾¤Ë¤¢¤ê¤Þ¤¹¡£   ¤³¤Î¥½¥Õ¥È¥¦¥§¥¢¤Î¥¤¥ó¥¹¥È¡¼¥ë¤Ï¤³¤Î HOWTO ¤ÎÈÏ°Ï³°¤Ç¤¹¡£ ¤·¤«¤·¡¢³Æ¥Ä¡¼¥ë¤Ë¤Ï¤½¤Î°Ù¤ÎÊ¸½ñ¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤³¤Ë¡¢¤½¤Î URL ¤ò´ö¤Ä¤«¾Ò²ð¤·¤Þ¤¹ - <itemize>   <item><url url="http://freshmeat.net/projects/oidentd/homepage/" name="Oident"> ¤Ï¡¢¥Þ¥¹¥«¥ì¡¼¥É¡¦¥æ¡¼¥¶¤ªµ¤¤ËÆþ¤ê¤Î IDENT ¥µ¡¼¥Ð¤Ç¤¹¡£   <item><url url="ftp://ftp.code.org/pub/linux/midentd/" name="Mident"> ¤Ï ¿Íµ¤¤Î¤¢¤ë¤â¤¦°ì¤Ä¤Î IDENT ¥µ¡¼¥Ð¤Ç¤¹¡£ <item><url url="http://insecurity.net/sidentd.gz" name="Sident"> <item><url url="ftp://sunsite.unc.edu/pub/Linux/system/network/daemons/" name="Other Idents"> </itemize>   ¥µ¡¼¥Ð¤¬ Ident ¾ðÊó¤òÆÀ¤Æ¥æ¡¼¥¶¤¬°Û¤Ê¤Ã¤Æ¤¤¤¿¤ÈÃÎ¤Ã¤Æ¤â¡¢Æ±¤¸¥Û¥¹¥È¤«¤é¤Î Â¿½ÅÀÜÂ³¤òµö¤½¤¦¤È¤·¤Ê¤¤¤¤¤¯¤Ä¤«¤Î¥¤¥ó¥¿¡¼¥Í¥Ã¥È IRC ¥µ¡¼¥Ð¤¬¤¢¤ë¤³¤È¤Ë Ãí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£ ¥µ¡¼¥Ð¤Î¥·¥¹¥Æ¥à´ÉÍý¼Ô¤Ë¶ì¾ð¤ò¸À¤Ã¤Æ¤¯¤À¤µ¤¤¡£ :)    <sect1>( DCC ) - mIRC ¤Î DCC Á÷¿®¤¬Æ°ºî¤·¤Þ¤»¤ó¡£  Setup and click on the "IRC servers tab". Make sure that it is set to port 6667. If you require other ports, see below. Next, goto File --> Setup --> Local Info and clear the fields for Local Host and IP Address. Now select the checkboxes for "LOCAL HOST" and "IP address" (IP address may be checked but disabled). Next under "Lookup Method", configure it for "normal". It will NOT work if "server" is selected. That's it. Try to the IRC server again. -->  ¤³¤ì¤Ï mIRC ¤ÎÀßÄê¤ÎÌäÂê¤Ç¤¹¡£ ¤³¤ì¤ò²ò·è¤¹¤ë¤Ë¤Ï¡¢ºÇ½é¤Ë mIRC ¤ò IRC ¥µ¡¼¥Ð¤«¤éÀÚÃÇ¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤ì¤«¤é mIRC ¤Ç¡¢ File ¢ª Setup ¤È¿Ê¤ß¡¢ IRC servers ¥¿¥Ö¤ò¥¯¥ê¥Ã¥¯¤·¤Þ¤¹¡£ ¥Ý¡¼¥È 6667 ¤¬ÀßÄê¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ Â¾¤Î¥Ý¡¼¥È¤òÍ×µá¤¹¤ë¤Ê¤é¸å½Ò¤ÎµºÜ¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£ ¼¡¤Ë¡¢ File ¢ª Setup ¢ª Local Info ¤ò³«¤¤¤Æ¡¢ Local Host ¤È IP Address ¤Î ¥Õ¥£¡¼¥ë¥É¤ò¥¯¥ê¥¢¤·¤Æ¤¯¤À¤µ¤¤¡£ ¼¡¤Ë "LOCAL HOST" ¤È "IP address" ¤Î¥Á¥§¥Ã¥¯¥Ü¥Ã¥¯¥¹¤òÁªÂò¤·¤Þ¤¹¡£ ( IP address ¤Ï¥Á¥§¥Ã¥¯¤Ç¤¤ë¤«¤â¤·¤ì¤Þ¤»¤ó¤¬Ìµ¸ú¤Ë¤Ê¤ê¤Þ¤¹¡£) ¼¡¤Ë "Lookup Method" ¤Î²¼¤Ç "normal" ¤ËÀßÄê¤·¤Þ¤¹¡£ ¤â¤· "server" ¤¬ÁªÂò¤µ¤ì¤Æ¤¤¤ë¤ÈÆ°ºî¤·¤Þ¤»¤ó¡£ ¤½¤ì¤À¤±¤Ç¤¹¡£ IRC ¥µ¡¼¥Ð¤ËºÆ¤Ó·Ò¤¤¤Ç¤ß¤Æ¤¯¤À¤µ¤¤¡£ ¡ÚÌõÃí: mIRC ¤Ï <htmlurl url="http://www.mirc.com/"> ¤Ë¤¢¤ë¡¢ Windows ·Ï OS ¸þ¤±¤Î¡¢¥·¥§¥¢¥¦¥§¥¢¤Î IRC ¥¯¥é¥¤¥¢¥ó¥È¤Ç¤¹¡£ ¤Ê¤ª¡¢Ìõ¼Ô¤¬¥À¥¦¥ó¥í¡¼¥É¤·¤Æ»îÍÑ¤·¤Æ¤ß¤Þ¤·¤¿¤¬¡¢ÆüËÜ¸ì¤ÎÉ½¼¨¤Ï¤Ç¤¤Þ¤»¤ó ¤Ç¤·¤¿¡£¡Û   ¤â¤· 6667 °Ê³° (Îã¤¨¤Ð6969) ¤ÎIRC ¥µ¡¼¥Ð¤Î¥Ý¡¼¥È¤òÍ×µá¤¹¤ë¤Ê¤é¡¢IRC ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥â¥¸¥å¡¼¥ë¤ò¥í¡¼¥É¤¹¤ë°Ù¤Ë¡¢µ¯Æ°¥Õ¥¡¥¤¥ë /etc/rc.d/rc.firewall ¤òÊÔ½¸¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤Î¥Õ¥¡¥¤¥ë¤Î "modprobe ip_masq_irc" ¤Î¹Ô¤Ë "ports=6667,6969" ¤òÄÉ²Ã¤·¤Þ¤¹¡£ ¹¹¤Ë¡¢¥«¥ó¥Þ¤Ç¶èÀÚ¤Ã¤Æ¥Ý¡¼¥È¤Î»ØÄê¤òÄÉ²Ã¤Ç¤¤Þ¤¹¡£   ºÇ¸å¤Ë¡¢Á´¤Æ¤Î¥Þ¥¹¥«¥ì¡¼¥É¥Þ¥·¥ó¾å¤ÎÁ´¤Æ¤Î IRC ¥¯¥é¥¤¥¢¥ó¥È¤òÀÚÃÇ¤·¤Æ¡¢ IRC ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥â¥¸¥å¡¼¥ë¤ò¥ê¥í¡¼¥É¤·¤Æ¤¯¤À¤µ¤¤ - /sbin/rmmod ip_masq_irc /etc/rc.d/rc.firewall <label id="aliasing">    <sect1>( IP Aliasing ) - IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï1Ëç¤À¤±¤Î¥¤¡¼¥µ¥Í¥Ã¥È ¥Í¥Ã¥È¥ï¡¼¥¯¥«¡¼¥É¤ÇÆ°ºî¤·¤Þ¤¹¤«?   <bf>¡Ö¤Ï¤¤¡×¤È¤â¡Ö¤¤¤¤¤¨¡×¤È¤â¸À¤¨¤Þ¤¹</bf>¡£ ¥æ¡¼¥¶¤Ï¥«¡¼¥Í¥ë¤Î "IP Alias" µ¡Ç½¤ò»È¤Ã¤Æ¡¢ eth0:1, eth0:2 ¤Î¤è¤¦¤Ë ÊÌÌ¾¤ò»È¤Ã¤¿Â¿½Å¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤òÀßÄê¤Ç¤¤Þ¤¹¡£ ¤·¤«¤·¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò¤³¤ÎÊÌÌ¾¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Ë»È¤¦¤³¤È¤Ï¤ªÁ¦¤á ¤·¤Þ¤»¤ó¡£ ²¿¸Î¤Ê¤é¡¢Ã±°ì¤Î NIC ¥«¡¼¥É¤Ç¤Ï°ÂÁ´¤Ê¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤òÄó¶¡¤¹¤ë¤³¤È¤¬ Èó¾ï¤Ëº¤Æñ¤Ë¤Ê¤ê¤Þ¤¹¡£ ¤³¤ì¤Ë²Ã¤¨¤Æ¡¢Æþ¤Ã¤ÆÍè¤¿¥Ñ¥±¥Ã¥È¤¬¤Û¤È¤ó¤ÉÆ±»þ¤ËÈ¯Á÷¤µ¤ì¤ë¤Î¤Ç¡¢¤³¤Î ¥ê¥ó¥¯¾å¤Ç°Û¾ï¤ÊÎÌ¤Î¥¨¥é¡¼¤ò·Ð¸³¤¹¤ë¤Ç¤·¤ç¤¦¡£ ¤³¤ÎÍýÍ³¤È¡¢¸½ºß¤Ï NIC ¥«¡¼¥É¤¬ $10 Ì¤Ëþ¤Î²Á³Ê¤Ç¤¹¤«¤é¡¢»ä¤Ï¤½¤ì¤¾¤ì¤Î ¥Þ¥¹¥«¥ì¡¼¥ÉÀÜÂ³¤µ¤ì¤¿¥Í¥Ã¥È¥ï¡¼¥¯¡¦¥»¥°¥á¥ó¥ÈËè¤Ë 1 ¤Ä¤º¤Ä¤Î NIC ¤ò ¼ê¤ËÆþ¤ì¤ë¤³¤È¤ò¶¯¤¯¤ª¾©¤á¤·¤Þ¤¹¡£   ¤Þ¤¿IP¥Þ¥¹¥«¥ì¡¼¥É¤Ï eth0, eth1 ¤Î¤è¤¦¤ÊÊªÍýÅª¤Ê¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¾å¤Ç¤·¤« Æ°ºî¤·¤Ê¤¤¤È»×¤Ã¤Æ¤¯¤À¤µ¤¤¡£ "eth0:1, eth1:1, ¤Ê¤É" ¤ÎÊÌÌ¾¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤ò»È¤Ã¤Æ¤â¥Þ¥¹¥«¥ì¡¼¥É¤Ï Æ°ºî¤·¤Ê¤¤¤Ç¤·¤ç¤¦¡£ ¸À¤¤ÂØ¤¨¤ì¤Ð¡¢°Ê²¼¤Î¤è¤¦¤Ê¤â¤Î¤ÏÆ°ºî¤·¤Þ¤»¤ó - <itemize> <item> /sbin/ipfwadm -F -a m -W eth0:1 -S 192.168.0.0/24 -D 0.0.0.0/0 <item> /sbin/ipchains -A forward -i eth0:1 -s 192.168.0.0/24 -j MASQ" </itemize>   ¤½¤ì¤Ç¤âÊÌÌ¾¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Ë¤Þ¤À¶½Ì£¤ò»ý¤Ã¤Æ¤¤¤ë¤Î¤Ç¤·¤¿¤é¡¢¥«¡¼¥Í¥ë¤Î "IP Alias" µ¡Ç½¤òÍ¸ú¤Ë¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¤½¤Î¸å¡¢ºÆ¥³¥ó¥Ñ¥¤¥ë¤·¡¢¥ê¥Ö¡¼¥È¤·¤Þ¤¹¡£ °ìÅÙ¿·¤·¤¤¥«¡¼¥Í¥ë¤ò¼Â¹Ô¤¹¤ë¤È¡¢¿·¤·¤¤¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹ (¤Ä¤Þ¤ê /dev/eth0:1 ¤Ê¤É) ¤ò»ÈÍÑ¤¹¤ë¤¿¤á¤Ë Linux ¤ÎÀßÄê¤¬É¬Í×¤Ë¤Ê¤ê¤Þ¤¹¡£ ¤½¤Î¸å¤Ï¾åµ¤Î¤è¤¦¤Ê´ö¤Ä¤«¤ÎÀ©¸Â¤¬¤¢¤ê¤Þ¤¹¤¬¡¢ÄÌ¾ï¤Î¥¤¡¼¥µ¥Í¥Ã¥È¡¦ ¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î¤è¤¦¤Ë°·¤¦¤³¤È¤¬¤Ç¤¤Þ¤¹¡£   <sect1>( MULTI-LAN ) - »ä¤Ï 2 ¤Ä¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ LAN¤ò»ý¤Ã¤Æ¤¤¤Þ¤¹¤¬¡¢¤½¤ì¤é¤Ï¸ß¤¤¤ËÄÌ¿®¤Ç¤¤Þ¤»¤ó¡£  ¾ÜºÙ¤Ï <ref id="multiple-masqed-lans" name="Ê£¿ô¤ÎÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Ø¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É"> ¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£ <label id="shaping">   <sect1>( SHAPING ) - »ä¤Ï¡¢ÆÃÄê¤Î¥¿¥¤¥×¤Î¥È¥é¥Õ¥£¥Ã¥¯¤ÎÂ®ÅÙ¤òÀ©¸Â¤·¤¿¤¤¤È»×¤¤¤Þ¤¹¡£  ¤³¤Î¥È¥Ô¥Ã¥¯¤Ï¼ÂºÝ¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤È¤Ï´Ø·¸¤Ê¤¯¡¢Linux ¥«¡¼¥Í¥ë¤Ë ÁÈ¤ß¹þ¤Þ¤ì¤Æ¤¤¤ë¥È¥é¥Õ¥£¥Ã¥¯¥·¥§¡¼¥Ô¥ó¥°¤È¥ì¡¼¥ÈÀ©¸Âµ¡Ç½¤¬Á´¤Æ¤ò¹Ô¤¤¤Þ¤¹¡£ ¾ÜºÙ¤Ï¥«¡¼¥Í¥ë¥½¡¼¥¹¥Ä¥ê¡¼¤Ë¤¢¤ë /usr/src/linux/Documentation/networking/shaper.txt ¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£ ¡ÚÌõÃí: ¡Ö¥È¥é¥Õ¥£¥Ã¥¯¥·¥§¡¼¥Ô¥ó¥°¡×¤Ï¡¢¥«¡¼¥Í¥ë¤Î Traffic Shaper (CONFIG_SHAPER) ¤È¤¤¤¦¥¹¥¤¥Ã¥Á¤Ç»ØÄê¤µ¤ì¤ëµ¡Ç½¤Ç¡¢°ìÈÌ¤Ë¥Í¥Ã¥È¥ï¡¼¥¯µ¡´ï¤Î ½ÐÎÏÂ¦¤Ç¹Ô¤ï¤ì¤ëµ¡Ç½¤ò»Ø¤·¤Þ¤¹¡£ ¡Ö¥ì¡¼¥ÈÀ©¸Â¡×¤È¤¤¤¦¸ÀÍÕ¤Ï¡¢¹¤¤°ÕÌ£¤Ç¤Î¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÂÓ°èÀ©¸Âµ»½ÑÁ´ÂÎ¤ò »Ø¤·¡¢Á°½Ò¤Î¥È¥é¥Õ¥£¥Ã¥¯¥·¥§¡¼¥Ô¥ó¥°¤À¤±¤Ç¤Ê¤¯¡¢¶ñÂÎÅª¤Ë¤Ï¥Ý¥ê¥·¥ó¥°¤ä¥¥å¡¼¤Î ¥Þ¥Í¥¸¥á¥ó¥È¡¢¥¹¥±¥¸¥å¡¼¥ê¥ó¥°Åù¤Îµ¡Ç½¤â´Þ¤Þ¤ì¤Þ¤¹¡£¡Û  ¤³¤ì¤Ë´Ø¤·¤Æ¡¢IPROUTE2 ¤Î°Ù¤Î <ref id="2.2.x-Requirements" name="2.2.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Î¾Ï¤Î²¼¤Ë¡¢¤¤¤¯¤Ä¤«¤Î URL ¤ò´Þ¤àÂ¿¤¯¤Î¾ðÊó¤¬¤¢¤ê¤Þ¤¹¡£   <sect1>( ACCOUNTING ) - »ä¤ÏÃ¯¤¬¥Í¥Ã¥È¥ï¡¼¥¯¤ò»ÈÍÑ¤·¤Æ¤¤¤ë¤«¤Ë¤Ä¤¤¤Æ´ÉÍý¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£   IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ç¤Ç¤¤ë¤³¤È¤Ï¤½¤¦Â¿¤¯¤Ï¤¢¤ê¤Þ¤»¤ó¤¬¡¢¤³¤³¤Ë´ö¤Ä¤«¤Î ¥¢¥¤¥Ç¥¢¤¬¤¢¤ê¤Þ¤¹¡£ ¤â¤·¡¢¤â¤Ã¤ÈÎÉ¤¤²ò·èË¡¤òÃÎ¤Ã¤Æ¤¤¤ë¤Ê¤é¡¢¤³¤Î HOWTO ¤ÎÃø¼Ô¤Ë¥á¡¼¥ë¤ò Á÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤¦¤¹¤ì¤Ð¡¢HOWTO ¤ËºÜ¤»¤é¤ì¤Þ¤¹¡£ <itemize>   <item>¥¢¥¤¥Ç¥¢ #1 - ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ø½Ð¤Æ¤¤¤¯ www ¥È¥é¥Õ¥£¥Ã¥¯¤òÁ´¤ÆµÏ¿ ¤·¤¿¤¤¤È¸À¤¦¤³¤È¤Ç¤¹¤Í¡£ ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥ë¡¼¥ë¤Ë¡Ö¥Ý¡¼¥È 80 ÈÖ¤ò ACCEPT ¡×¤ÈÀßÄê¤·¤Æ¡¢ SYN ¥Ó¥Ã¥È¤¬ÀßÄê¤µ¤ì¤¿¥È¥é¥Õ¥£¥Ã¥¯¤ò¥í¥°µÏ¿¤¹¤ë¤è¤¦¤ËÀßÄê¤Ç¤¤Þ¤¹¡£ ¤¿¤À¡¢¤³¤ì¤ÏÈó¾ï¤ËÂç¤¤Ê¥í¥°¥Õ¥¡¥¤¥ë¤òºîÀ®¤¹¤ë¤³¤È¤ËÃí°Õ¤·¤Æ¤¯¤À¤µ¤¤¡£   <item>¥¢¥¤¥Ç¥¢ #2 - "ipchains -L -M" ¥³¥Þ¥ó¥É¤ò 1 ÉÃ´Ö¤Ë°ìÅÙ¼Â¹Ô¤·¡¢ ¤³¤ì¤é¤Î¥¨¥ó¥È¥ê¡¼¤ÎÁ´¤Æ¤ò¥í¥°µÏ¿¤·¤Þ¤·¤ç¤¦¡£ ¤½¤Î¸å¡¢¤³¤Î¾ðÊó¤ò¤Ò¤È¤Ä¤ÎÂç¤¤Ê¥Õ¥¡¥¤¥ë¤Ø¹çÊ»¤¹¤ë¥×¥í¥°¥é¥à¤ò ½ñ¤¤Þ¤·¤ç¤¦¡£ </itemize>   <sect1>( MULTIPLE IPs ) - ¤¤¤¯¤Ä¤«¤Î³°Éô IP ¥¢¥É¥ì¥¹¤ò»È¤Ã¤Æ¡¢¤¤¤¯¤Ä¤«¤ÎÆâÉô¥Þ¥·¥ó¤Ø PORTFW ¤·¤¿¤¤¤Î¤Ç¤¹¤¬¤É¤Î¤è¤¦¤Ë¤ä¤ë¤Î¤Ç¤·¤ç¤¦¤«¡£   ¤Ç¤¤Þ¤»¤ó¡£ ¥Þ¥¹¥«¥ì¡¼¥É¤Ï 1ÂÐÂ¿¤Î NAT ¥»¥Ã¥È¥¢¥Ã¥×¤Ç¤¹¡£ ¤¢¤Ê¤¿¤¬ÁÜ¤·¤Æ¤¤¤ë¤è¤¦¤Ê¥Ä¡¼¥ë¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó¡£ ¤¢¤Ê¤¿¤¬ÁÜ¤·¤Æ¤¤¤ë¤Î¤ÏÂ¿ÂÐÂ¿¤Î NAT ¤Ë¤è¤ë²ò·èÊýË¡¤Ç¡¢½¾Íè¤Î NAT ¥»¥Ã¥È¥¢¥Ã¥×¤Ç¤¹¡£ ¤¢¤Ê¤¿¤¬É¬Í×¤Ê¤Î¤Ï IPROUTE2 ¥Ä¡¼¥ë¤Ç¡¢¾Ü¤·¤¯¤Ï FAQ ¤Î¾Ï¤Î <ref id="shaping" name="¥È¥é¥Õ¥£¥Ã¥¯¥·¥§¡¼¥Ô¥ó¥°"> ¤Ë¤¢¤ë IPROUTE2 ¤Ë´Ø¤¹¤ë²Õ½ê¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£  1 ¤Ä¤ÎÆâÉô NIC ¤ò "IP Alias" ¤ò»È¤Ã¤ÆÊ£¿ô IP ¥¢¥É¥ì¥¹¤Ë¤·¡¢¤½¤·¤Æ¤³¤ì¤é¤¹¤Ù¤Æ¤Î¥Ý¡¼¥È (0-65535) ¤ò¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥É¤·¡¢IPROUTE2 ¤ò»È¤Ã¤ÆÅ¬ÀÚ¤Ê¥½¡¼¥¹¡¿¥Ç¥£¥¹¥Æ¥£¥Í¡¼¥·¥ç¥ó¤Î IP ¥Ú¥¢¤ò°Ý»ý¤¹¤ë¤³¤È¤ò¹Í¤¨¤Æ¤¤¤ë¿Í¤Ø¤Î²óÅú¤Ë¤Ê¤ê¤Þ¤¹¡£¤³¤ì¤Ï¥«¡¼¥Í¥ë 2.0.x ¤Ç¤¦¤Þ¤¯¤¤¤¡¢¥«¡¼¥Í¥ë 2.2.x ¤Ç¤â¤è¤ê¤¦¤Þ¤¯¤¤¤¤Þ¤·¤¿¡£¤³¤ÎÀ®¸ù¤Ë¤«¤«¤ï¤é¤º¡¢¤³¤Î¤ä¤ê¤«¤¿¤Ï¤½¤ì¤ò¹Ô¤¦Å¬ÀÚ¤ÊÊýË¡¤Ç¤Ê¤¯¡¢¥µ¥Ý¡¼¥È¤µ¤ì¤¿¥Þ¥¹¥«¥ì¡¼¥É¤Î»È¤¤Êý¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó¡£IPROUTE2 ¤ò¸«¤Æ¤¯¤À¤µ¤¤.. ËÜÅö¤Î NAT ¤ò¹Ô¤¦Àµ¤·¤¤ÊýË¡¤¬¤¢¤ê¤Þ¤¹¡£    ¤Þ¤¿¤â¤¦°ì¤Ä¤ÎÃí°Õ¤Ç¤¹¤¬ - ¤â¤·¡¢¥Ö¥ê¥Ã¥¸¤µ¤ì¤¿ DSL ¤«¥±¡¼¥Ö¥ë¡¦¥â¥Ç¥à (PPPoE¤Ç¤Ï¤Ê¤¤)¤ò»È¤Ã¤Æ ÀÜÂ³¤·¤Æ¤¤¤ì¤Ð¡¢¤¢¤Ê¤¿¤Î¹½À®¤Ç¤Ï·ÐÏ©¤ò·è¤á¤é¤ì¤Ê¤¤¤Î¤Ç¡¢¾¯¤·Æñ¤·¤¯¤Ê¤ê¤Þ¤¹¡£ ¤Ç¤â¿´ÇÛ¤Ï¤¤¤ê¤Þ¤»¤ó¡£ LDP ¤Î "Bridge+Firewall, Linux Bridge+Firewall Mini-HOWTO" ¤ò¥Á¥§¥Ã¥¯¤·¤Æ ¤¯¤À¤µ¤¤¡£ Linux ¥Ü¥Ã¥¯¥¹¤¬°ì¤Ä¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¾å¤Ç¡¢Ê£¿ô¤Î IP ¥¢¥É¥ì¥¹¤ò ¥µ¥Ý¡¼¥È¤¹¤ëÊýË¡¤ò¶µ¤¨¤Æ¤¯¤ì¤ë¤Ç¤·¤ç¤¦¡£   <sect1>»ä¤Ï¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ÀÜÂ³¤ò¸«¤ë°Ù¡¢ NETSTAT ¥³¥Þ¥ó¥É¤ò »È¤ª¤¦¤È¤·¤Þ¤·¤¿¤¬¡¢¤³¤ì¤¬Æ°ºî¤·¤Æ¤¯¤ì¤Þ¤»¤ó¡£   2.0.x ¥Ù¡¼¥¹¤Î Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ë´Þ¤Þ¤ì¤ë "netstat" ¥×¥í¥°¥é¥à¤Ë ÌäÂê¤¬¤¢¤ë¤«¤â¤·¤ì¤Þ¤»¤ó¡£ Linux ¤ò¥ê¥Ö¡¼¥È¤·¤¿¸å¡¢"netstat -M" ¤òµ¯Æ°¤¹¤ë¤È¡¢¤¦¤Þ¤¯Æ°ºî¤·¤Þ¤¹¡£ ¤·¤«¤·¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥³¥ó¥Ô¥å¡¼¥¿¤¬ ping ¤ä traceroute ¤Î¤è¤¦¤Ê¡¢ ICMP ¥È¥é¥Õ¥£¥Ã¥¯¤òÈ¯À¸¤·¤¿¸å¤Ë¡¢°Ê²¼¤Î¤è¤¦¤Ê¥¨¥é¡¼¤ò¸«¤ë¤«¤â¤·¤ì¤Þ¤»¤ó - <verb> masq_info.c: Internal Error `ip_masquerade unknown type'. </verb>   ¤³¤Î¤¿¤á¤ÎÂåÂØ¼êÃÊ¤Ï "/sbin/ipfwadm -M -l" ¥³¥Þ¥ó¥É¤ò»ÈÍÑ¤¹¤ë¤³¤È¤Ç¤¹¡£ ¤Þ¤¿°ìÅÙ¥ê¥¹¥È¤µ¤ì¤¿ ICMP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥¨¥ó¥È¥ê¤¬¥¿¥¤¥à¥¢¥¦¥È¤¹¤ë¤È¡¢ "netstat" ¤ÏºÆ¤ÓÆ°ºî¤¹¤ë¤³¤È¤Ëµ¤¤¬ÉÕ¤¯¤Ç¤·¤ç¤¦¡£ <label id="PPTP">   <sect1> ( VPNs ) - Microsoft PPTP (GRE tunnels) ¤Þ¤¿¤Ï IPSEC (Linux SWAN) ¥È¥ó¥Í¥ë¤ò IP ¥Þ¥¹¥«¥ì¡¼¥É ¤òÄÌ¤·¤Æ»È¤¤¤¿¤¤¤Î¤Ç¤¹¤¬¡£   ¤³¤ì¤Ï²ÄÇ½¤Ç¤¹¡£¤½¤ì¤ÏÂ¿¾¯¤³¤ÎÊ¸½ñ¤ÎÈÏ°Ï³°¤Ç¤¹¤¬¡¢¾Ü¤·¤¯¤Ï John Hardin ¤Î <htmlurl url="ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html" name="PPTP Masq"> ¥Ú¡¼¥¸¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£    <sect1>XYZ ¥Í¥Ã¥È¥ï¡¼¥¯¡¦¥²¡¼¥à¤ò IP ¥Þ¥¹¥«¥ì¡¼¥É ¤òÄÌ¤·¤Æ»È¤¤¤¿¤¤¤Î¤Ç¤¹¤¬¡¢ ¤¦¤Þ¤¯¤¤¤¤Þ¤»¤ó¡£½õ¤±¤Æ!   ¤Þ¤º¡¢<url url="http://www.tsmservices.com/masq" name="Steve Grevemeyer's MASQ Applications page"> ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤â¤·²ò·èË¡¤¬¤½¤³¤Ë¤Ê¤«¤Ã¤¿¤é¡¢LINUX ¥«¡¼¥Í¥ë¤Ë Glenn Lamb ¤Î <url url="ftp://ftp.netcom.com/pub/mu/mumford/loose-udp-2.0.36.patch.gz" name="LooseUDP"> ¥Ñ¥Ã¥Á¤òÅö¤Æ¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤ì¤Ï¤³¤ÎÊ¸½ñ¤Î <ref id="LooseUDP"> ¤Î¾Ï¤ÎÃæ¤ËÌÖÍå¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ ¤Þ¤¿¤â¤Ã¤ÈÂ¿¤¯¤Î¾ðÊó¤Ï Dan Kegel ¤Î <url url="http://www.alumni.caltech.edu/˜dank/peer-nat.html" name="NAT Page"> ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£   ¤â¤·µ»½ÑÅª¤Ë¶½Ì£¤¬¤¢¤ë¤Ê¤é¡¢"tcpdump" ¥×¥í¥°¥é¥à¤ò»È¤Ã¤Æ¡¢¤¢¤Ê¤¿¤Î ¥Í¥Ã¥È¥ï¡¼¥¯¤òÇÁ¤¤¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤·¤Æ XYZ ¥²¡¼¥à¤¬»È¤Ã¤Æ¤¤¤ë¥×¥í¥È¥³¥ë¤È¥Ý¡¼¥ÈÈÖ¹æ¤ò¸«¤Ä¤±½Ð¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤³¤Î¾ðÊó¤ò¥á¥â¤·¤¿¤é¡¢<htmlurl url="mailto://masq-subscribe@tiffany.indyramp.com" name="IP Masq ¥á¡¼¥ê¥ó¥°¥ê¥¹¥È"> ¤ò±ÜÍ÷¤·¤Æ¡¢Ä´¤Ù¤¿·ë²Ì¤ò¥á¡¼¥ë¤·¤Æ ½õ¤±¤Æ¤â¤é¤Ã¤Æ¤¯¤À¤µ¤¤¡£    <sect1>IP ¥Þ¥¹¥«¥ì¡¼¥É ¤Ï»Ã¤¯¤Î´Ö¤Ï¤¦¤Þ¤¯Æ°ºî¤·¤Þ¤¹¡£ ¤·¤«¤·¡¢¤½¤Î¸å¡¢Æ°ºî¤·¤Ê¤¯¤Ê¤ê¤Þ¤¹¡£ ºÆµ¯Æ°¤¹¤ë¤È»Ã¤¯¤Î´Ö¤³¤ì¤¬²ò·è¤µ¤ì¤¿¤è¤¦¤Ë¸«¤¨¤Þ¤¹¡£ ¤Ê¤¼¤Ç¤·¤ç¤¦¤«?   ¤¢¤Ê¤¿¤Ï IPAUTOFW ¤ò»È¤Ã¤Æ¤¤¤ë¤«¡¢°¿¤Ï¤½¤ì¤ò¥«¡¼¥Í¥ë¤Ë¥³¥ó¥Ñ¥¤¥ë¤·¤Æ¤¤¤ë ¤³¤È¤ËÅÒ¤±¤Þ¤·¤ç¤¦¡£ ¤Í¡¢¤½¤¦¤¸¤ã¤Ê¤¤¤Ç¤¹¤«? ¤³¤ì¤Ï IPAUTOFW ¤Ë´Ø¤¹¤ë´ûÃÎ¤ÎÌäÂê¤Ç¤¹¡£ Linux ¥«¡¼¥Í¥ë¤Ë IPAUTOFW ¤ò»È¤ï¤Ê¤¤¤Ç¡¢Âå¤ï¤ê¤ËIPPORTFW ¤ò»È¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¾ÜºÙ¤Ï <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤ÎÃæ¤ÇÌÖÍå¤µ¤ì¤Æ¤¤¤Þ¤¹¡£    <sect1>¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥³¥ó¥Ô¥å¡¼¥¿¤¬ SMTP ¤ä POP-3 ¥á¡¼¥ë¤òÁ÷¤Ã¤Æ¤¯¤ì¤Þ¤»¤ó!  ¤³¤ì¤Ï¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤ÎÌäÂê¤Ç¤Ï¤Ê¤¤¤Î¤Ç¤¹¤¬¡¢Â¿¤¯¤Î¿Í¤¬¤³¤¦¤Ê¤ë¤Î¤Ç¡¢¸ÀµÚ¤·¤Þ¤¹¡£   SMTP - ÌäÂê¤Ï¡¢¶²¤é¤¯ SMTP Ãæ·Ñ¥µ¡¼¥Ð¤È¤·¤Æ Linux ¥Ü¥Ã¥¯¥¹¤ò»ÈÍÑ¤·¤Æ¤ª¤ê¡¢ °Ê²¼¤Î¥¨¥é¡¼¤¬È¯À¸¤·¤Æ¤¤¤ë¤Î¤Ç¤Ï¤Ê¤¤¤Ç¤·¤ç¤¦¤« -  <tscreen> "error from mail server: we do not relay" (¥á¡¼¥ë¥µ¡¼¥Ð¤«¤é¤Î¥¨¥é¡¼ - Å¾Á÷¤Ç¤¤Þ¤»¤ó¡£) </tscreen>   Sendmail ¤Î¤è¤ê¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó¤äÂ¾¤Î¥á¡¼¥ëÅ¾Á÷¥¨¡¼¥¸¥§¥ó¥È (MTA) ¥µ¡¼¥Ð¤Ï¡¢ ¥Ç¥Õ¥©¥ë¥È¤ÇÃæ·Ñ¤ò¶Ø»ß¤·¤Æ¤¤¤Þ¤¹¡£(¤³¤ì¤Ï¤è¤¤¤³¤È¤Ç¤¹) ½¾¤Ã¤Æ¡¢¤³¤ì¤ò²ò·è¤¹¤ë¤¿¤á¤Ë²¼µ¤ò¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤ - <itemize>   <item>Sendmail - /etc/sendmail.cw ¥Õ¥¡¥¤¥ë¤òÊÔ½¸¤·¤Æ¡¢¤½¤Î¥Õ¥¡¥¤¥ë¤Ë ¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥³¥ó¥Ô¥å¡¼¥¿¤Î¥Û¥¹¥ÈÌ¾µÚ¤Ó ¥É¥á¥¤¥óÌ¾¤ò²Ã¤¨¤Æ¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥Þ¥·¥ó¤«¤é¤Î¥á¡¼¥ë¤Î Ãæ·Ñ¤òµö²Ä¤·¤Æ¤¯¤À¤µ¤¤¡£ ¹¹¤Ë /etc/hosts ¥Õ¥¡¥¤¥ë¤ÎÃæ¤Ç IP ¥¢¥É¥ì¥¹µÚ¤Ó FQDN (¥Û¥¹¥ÈÌ¾¤È ¥É¥á¥¤¥óÌ¾¤¬´°Á´¤Ëµ½Ò¤µ¤ì¤¿Ì¾Á°) ¤òÀßÄê¤·¤Æ¤¤¤ë¤³¤È¤ò¥Á¥§¥Ã¥¯¤·¤Æ ¤¯¤À¤µ¤¤¡£ ½ª¤ï¤Ã¤¿¤é¡¢¤½¤ÎÀßÄê¥Õ¥¡¥¤¥ë¤òÆÉ¤ß¹þ¤à°Ù¤Ë sendmail ¤òºÆµ¯Æ°¤¹¤ë É¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤ì¤Ï <url url="http://www.ecst.csuchico.edu/~dranch/LINUX/index-linux.html#TrinityOS" name="TrinityOS - Section 25"> ¤ÎÃæ¤ÇÌÖÍå¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ </itemize>   POP-3 - ¤¢¤ë¥æ¡¼¥¶¤Ï¥Í¥Ã¥È¥ï¡¼¥¯ÆâÉô¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤Æ¤¤¤ë¥³¥ó¥Ô¥å¡¼¥¿¤Î POP-3 ¥¯¥é¥¤¥¢¥ó¥È¤ò¡¢¤¢¤ë³°Éô¤Î SMTP ¥µ¡¼¥Ð¤ØÀÜÂ³¤¹¤ë¤è¤¦¤ËÀßÄê¤·¤Þ¤¹¡£ ÀÜÂ³¤¬¤µ¤ì¤Æ¤¤¤ë´Ö¡¢Â¿¤¯¤Î SMTP ¥µ¡¼¥Ð¤Ï¥Ý¡¼¥È 113 ¤òÄÌ¤¸¤Æ¤³¤ÎÀÜÂ³¤Ë IDENT ¤ò»î¤ß¤ë¤Ç¤·¤ç¤¦¡£ ¤³¤³¤ÇºÇ¤â¤¢¤ê¤¬¤Á¤ÊÌäÂê¤Ï¡¢¥Ç¥Õ¥©¥ë¥È¤Î¥Þ¥¹¥«¥ì¡¼¥É¡¦¥Ý¥ê¥·¡¼¤¬ DENY ¤Ë ÀßÄê¤µ¤ì¤Æ¤¤¤ë¤³¤È¤Ç¤¹¡£ ¤³¤ì¤ÏÎÉ¤¯¤¢¤ê¤Þ¤»¤ó¡£ ¤³¤ì¤ò REJECT ¤Ë¤·¤Æ¡¢rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤òºÆ¼Â¹Ô¤·¤Æ¤¯¤À¤µ¤¤¡£ <label id="iproute2">    <sect1>( IPROUTE2 ) - »ä¤Ï¡¢³°¤Ë½Ð¤ë¤¿¤á¤Î°Û¤Ê¤ë³°Éô IP ¥¢¥É¥ì¥¹¤ò¡¢°Û¤Ê¤ë ÆâÉô¥Þ¥¹¥«¥ì¡¼¥É¥Í¥Ã¥È¥ï¡¼¥¯¤Î³Æ¡¹¤Ë³ä¤êÅö¤Æ¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£   ¤³¤ÎÌäÂê¤ò¸À¤¤´¹¤¨¤ë¤È¤³¤¦¤¤¤¦¤³¤È¤Ç¤¹ - Ê£¿ô¤ÎÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤È¹¹¤Ë Ê£¿ô¤Î³°Éô IP ¥¢¥É¥ì¥¹¤Þ¤¿¤Ï¥Í¥Ã¥È¥ï¡¼¥¯¤ò»ý¤Ã¤Æ¤¤¤Þ¤¹¡£ ¤ä¤ê¤¿¤¤¤³¤È¤Ï LAN #1 ¤«¤é¤Ï³°Éô IP #1 ¤À¤±¤ò»ÈÍÑ¤·¡¢LAN #2 ¤«¤é¤Ï ³°Éô IP #2 ¤ò»ÈÍÑ¤¹¤ë¤³¤È¤Ç¤¹¡£ ÆâÉô LAN -%#045;--------> ¸ø¼°¤Ê IP LAN #1 ³°Éô IP #1 192.168.1.x --> 123.123.123.11 LAN #2 ³°Éô IP #2 192.168.2.x --> 123.123.123.12   ´ðËÜÅª¤Ë¡¢¤³¤³¤Çµ½Ò¤·¤¿¤â¤Î¤Ï°¸Àè¥¢¥É¥ì¥¹¤Ë¤è¤ë¥ë¡¼¥Æ¥£¥ó¥° (Åµ·¿Åª¤Ê IP ¥ë¡¼¥Æ¥£¥ó¥°) ¤À¤±¤Ç¤Ê¤¯¡¢Á÷¿®¸µ¥¢¥É¥ì¥¹¤Ë´ð¤Å¤¤¤Æ¤Î¥ë¡¼¥Æ¥£¥ó¥°¤Ë¤Ä¤¤¤Æ¤Ç¤¹¡£ ¤³¤ì¤Ï°ìÈÌÅª¤Ë "policy-based routing" ¡ÚÌõÃí: ¥Ý¥ê¥·¡¼¤Ë´ð¤Å¤¤¤¿ ¥ë¡¼¥Æ¥£¥ó¥°¡Û ¤¢¤ë¤¤¤Ï "source routing" ¡ÚÌõÃí: Á÷¿®¸µ¥ë¡¼¥Æ¥£¥ó¥°¡Û¤È ¸Æ¤Ð¤ì¤Þ¤¹¡£ ¤³¤Îµ¡Ç½¤Ï¥«¡¼¥Í¥ë 2.0.x ¤Ç¤ÏÄó¶¡¤µ¤ì¤Æ¤¤¤Þ¤»¤ó¤¬¡¢¥«¡¼¥Í¥ë 2.2.x ¤Ç¤Ï IPROUTE2 ¥Ñ¥Ã¥±¡¼¥¸¤Ë¤è¤Ã¤ÆÄó¶¡¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ ¤½¤·¤Æ¤³¤ì¤Ï IPTABLES ¤ò»È¤¦¿·¤·¤¤¥«¡¼¥Í¥ë 2.4.x ¤Ë¤ÏÁÈ¤ß¹þ¤Þ¤ì¤Æ¤¤¤Þ¤»¤ó¡£   Àè¤º¡¢ IPFWADM µÚ¤Ó IPCHAINS ¤ÏÎ¾Êý¶¦¡¢¥ë¡¼¥Æ¥£¥ó¥°¥·¥¹¥Æ¥à¤¬¼õ¤±¼è¤Ã¤¿ ¥Ñ¥±¥Ã¥È¤ò¤É¤³¤ØÁ÷¤ë¤Ù¤¤«·èÄê¤·¤¿ *¸å¤Ë¤Ê¤Ã¤Æ* ½é¤á¤Æ´ØÍ¿¤¹¤ë¤â¤Î¤À¤È¤¤¤¦ ¤³¤È¤òÍý²ò¤·¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ ¤³¤ÎÆ°ºî¤Î»ÅÁÈ¤ß¤Ï¡¢Á´¤Æ¤Î IPFWADM/IPCHAINS/IPMASQ ¤ÎÊ¸½ñ¤ËÂç¤¤ÊÀÖ¤¤ ¥¹¥¿¥ó¥×¤Ç²¡¤µ¤ì¤ë¤Û¤É¡¢ËÜÅö¤Ë½ÅÍ×¤Ê¤³¤È¤Ç¤¹¡£ ¤³¤ÎÍýÍ³¤Ï¡¢¥æ¡¼¥¶¤ÏºÇ½é¤Ë¥ë¡¼¥Æ¥£¥ó¥°¤òÀµ¤·¤¯ÀßÄê¤·¤Ê¤±¤ì¤Ð¤Ê¤é¤º¡¢ ¤½¤Î¸å¤Ë IPFWADM/IPCHAINS µÚ¤Ó/Ëô¤Ï¥Þ¥¹¥«¥ì¡¼¥Éµ¡Ç½¤òÄÉ²Ã¤·»Ï¤á¤ë¤³¤È¤¬ ¤Ç¤¤ë¤«¤é¤Ç¤¹¡£  ¤È¤Ë¤«¤¯¡¢¾å¤Ë¼¨¤µ¤ì¤¿Îã¤Î¥±¡¼¥¹¤Ë¤Ä¤¤¤Æ¤Ï¡¢¥ë¡¼¥Æ¥£¥ó¥°¥·¥¹¥Æ¥à¤¬ 192.168.1.x ¤«¤é¤Î¥Ñ¥±¥Ã¥È¤Ï 123.123.123.11 ·ÐÍ³¤Ë¡¢ 192.168.2.x ¤«¤é¤Î ¥Ñ¥±¥Ã¥È¤Ï 123.123.123.12 ·ÐÍ³¤È¤Ê¤ë¤è¤¦¤Ë¤µ¤»¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤³¤¬Æñ¤·¤¤ÉôÊ¬¤Ç¡¢¥ë¡¼¥Æ¥£¥ó¥°¤¬Àµ¤·¤¯¤Ê¤ì¤Ð¤½¤Î¾å¤Ë¥Þ¥¹¥«¥ì¡¼¥É¤ò ²Ã¤¨¤ë¤Î¤Ï´ÊÃ±¤Ç¤¹¡£  ¤³¤Îµ¤¤Þ¤°¤ì¤Ê¥ë¡¼¥Æ¥£¥ó¥°¤ò¹Ô¤¦¤¿¤á¤Ë¡¢IPROUTE2 ¤ò»ÈÍÑ¤·¤Þ¤¹¡£ ¤³¤Îµ¡Ç½¤ÏÁ´¤¯ IP ¥Þ¥¹¥«¥ì¡¼¥É¤È´Ø·¸¤¬¤Ê¤¤¤Î¤Ç¡¢¤³¤ÎHOWTO ¤Ï¤³¤Î¥È¥Ô¥Ã¥¯¤ò ¤½¤ì¤Û¤É¾Ü¤·¤¯ÌÖÍå¤·¤Þ¤»¤ó¡£ ¤³¤Î¥È¥Ô¥Ã¥¯¤Ë¤Ä¤¤¤Æ¤Ï <ref id="2.2.x-Requirements" name="2.2.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï"> ¤Ë¤¢¤ë´°Á´¤Ê URL ¤ÈÊ¸½ñ¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£  "iprule" ¤È "iproute" ¥³¥Þ¥ó¥É¤Ï "ip rule" ¤È "ip route" ¥³¥Þ¥ó¥É¤ÈÆ±¤¸¤Ç¤¹¡£ (»ä¤Ï¸¡º÷¤·°×¤¤¤Î¤ÇÁ°¼Ô¤Î¤Û¤¦¤¬¹¥¤¤Ç¤¹¡£) ²¼µ¤Î¥³¥Þ¥ó¥É¤ÏÁ´¤Æ´°Á´¤Ë¤Ï»î¸³¤µ¤ì¤Æ¤¤¤Þ¤»¤ó¡£ ¤³¤ì¤¬Æ°ºî¤·¤Ê¤¤¾ì¹ç¡¢ IPROUTE2 ¤ÎÃø¼Ô¤ÈÏ¢Íí¤ò¤È¤Ã¤Æ¤¯¤À¤µ¤¤..¤³¤ì¤ÏÁ´¤¯ IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤È´Ø·¸¤¬¤¢¤ê¤Þ¤»¤ó¤Î¤Ç¡¢David Ranch ¤ä IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤ÎÃ¯¤È¤â´Ø·¸¤·¤Þ¤»¤ó¡£  ºÇ½é¤Î¤¤¤¯¤Ä¤«¤Î¥³¥Þ¥ó¥É¤Ïµ¯Æ°»þ¤Ë°ìÅÙ¤À¤±¼Â¹Ô¤¹¤ëÉ¬Í×¤¬¤¢¤ë¤À¤±¤Ç¤¹¤Î¤Ç¡¢ /etc/rc.d/rc.local ¥Õ¥¡¥¤¥ë¤ÎÃæ¤Ëµ½Ò¤·¤Þ¤¹¡£ <![ %codes CDATA [ <tscreen> <verb>  # ÆâÉôLAN¤¬¸ß¤¤¤Î¥ë¡¼¥Æ¥£¥ó¥°¤ò²ÄÇ½¤Ë¤·¤Þ¤¹¡£ /sbin/iprule add from 192.168.0.0/16 to 192.168.0.0/16 table main pref 100 # ¤¹¤Ù¤Æ¤ÎÂ¾¤Î 192.168.1.x ¤«¤é¤Î¥È¥é¥Õ¥£¥Ã¥¯¤Ï³°Éô¤Ç¤¹¡¢¥Æ¡¼¥Ö¥ë 101 ¤Ë¤è¤Ã¤Æ°·¤¦¡£ /sbin/iprule add from 192.168.1.0/24 to 0/0 table 101 pref 102 # ¤¹¤Ù¤Æ¤ÎÂ¾¤Î 192.168.2.x ¤«¤é¤Î¥È¥é¥Õ¥£¥Ã¥¯¤Ï³°Éô¤Ç¤¹¡¢¥Æ¡¼¥Ö¥ë 102 ¤Ë¤è¤Ã¤Æ°·¤¦¡£ /sbin/iprule add from 192.168.2.0/24 to 0/0 table 102 pref 102  eth0 ¤¬ÀßÄê¤µ¤ì¤Æ¤¤¤ë»þ¤Ë¡¢¤³¤ì¤é¤Î¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ Redhat ¥·¥¹¥Æ¥à¤Ç¤Ï¡¢¶²¤é¤¯ /etc/sysconfig/network-scripts/ifup-post ¤ÎÃæ¤Çµ½Ò¤¹¤ë¤³¤È¤È¤Ê¤ë¤Ç¤·¤ç¤¦¡£ ¤³¤ì¤¬Æ°ºî¤¹¤ë¤³¤È¤ò³Î¤«¤á¤ë¤¿¤á¤ËºÇ½é¤ÏÉ¬¤º¼êÆ°¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£  # ¥Æ¡¼¥Ö¥ë 101 ¤Ï¡¢³ä¤êÅö¤Æ¤é¤ì¤¿¥Ñ¥±¥Ã¥È¤ò¤¹¤Ù¤Æ 123.123.123.11 ·ÐÍ³¤Ë»Ø¼¨¤·¤Þ¤¹¡£ /sbin/iproute add table 101 via 62123.123.123.11 # ¥Æ¡¼¥Ö¥ë 102 ¤Ï¡¢³ä¤êÅö¤Æ¤é¤ì¤¿¥Ñ¥±¥Ã¥È¤ò¤¹¤Ù¤Æ 123.123.123.12 ·ÐÍ³¤Ë»Ø¼¨¤·¤Þ¤¹¡£ /sbin/iproute add table 102 via 62123.123.123.12  ¤³¤ÎÃÊ³¬¤Ç¤Ï¡¢192.168.1.x ¤«¤é³°Éô¤ÎÀ¤³¦¤Ø¤Î¥Ñ¥±¥Ã¥È¤¬ 123.123.123.11 ¤ò·ÐÍ³¤·¤Æ¤ª¤ê¡¢192.168.2.x ¤«¤é¤Î¥Ñ¥±¥Ã¥È¤Ï 123.123.123.12 ¤ò·ÐÍ³¤·¤Æ¤¤¤ë¤³¤È¤òÃÎ¤Ã¤Æ¤ª¤¤¤Æ¤¯¤À¤µ¤¤¡£  ¥ë¡¼¥Æ¥£¥ó¥°¤¬Àµ³Î¤Ë¤Ê¤Ã¤¿¤é¡¢º£ÅÙ¤Ï¤É¤ó¤Ê IPFWADM ¤¢¤ë¤¤¤Ï IPCHAINS ¥ë¡¼¥ë¤ò¤â²Ã¤¨¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ ¼¡¤ÎÎã¤Ï IPCHAINS ÍÑ¤Ç¤¹ - /sbin/ipchains -A forward -i ppp+ -j MASQ  ¤¹¤Ù¤Æ¤ÎÀßÄê¤¬¹ç¤Ã¤Æ¤¤¤ë¾ì¹ç¡¢¥Þ¥¹¥«¥ì¡¼¥É¡¦¥³¡¼¥É¤Ï¥Ñ¥±¥Ã¥È¤¬ 123.123.123.11 ¤È 123.123.123.12 ·ÐÍ³¤Ë¥ë¡¼¥Æ¥£¥ó¥°¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò¸«¤Æ¡¢¥Þ¥¹¥«¥ì¡¼¥É¤ÎÁ÷¿®¸µ¡¦¥¢¥É¥ì¥¹¤È¤·¤Æ¤½¤ì¤é¤Î¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤·¤Þ¤¹¡£ </verb> </tscreen> ]]> <tscreen> <verb> # ÆâÉôLAN¤¬¸ß¤¤¤Î¥ë¡¼¥Æ¥£¥ó¥°¤ò²ÄÇ½¤Ë¤·¤Þ¤¹¡£ /sbin/iprule add from 192.168.0.0/16 to 192.168.0.0/16 table main pref 100 # ¤¹¤Ù¤Æ¤ÎÂ¾¤Î 192.168.1.x ¤«¤é¤Î¥È¥é¥Õ¥£¥Ã¥¯¤Ï³°Éô¤Ç¤¹¡¢¥Æ¡¼¥Ö¥ë 101 ¤Ë¤è¤Ã¤Æ°·¤¦¡£ /sbin/iprule add from 192.168.1.0/24 to 0/0 table 101 pref 102 # ¤¹¤Ù¤Æ¤ÎÂ¾¤Î 192.168.2.x ¤«¤é¤Î¥È¥é¥Õ¥£¥Ã¥¯¤Ï³°Éô¤Ç¤¹¡¢¥Æ¡¼¥Ö¥ë 102 ¤Ë¤è¤Ã¤Æ°·¤¦¡£ /sbin/iprule add from 192.168.2.0/24 to 0/0 table 102 pref 102 eth0 ¤¬ÀßÄê¤µ¤ì¤Æ¤¤¤ë»þ¤Ë¡¢¤³¤ì¤é¤Î¥³¥Þ¥ó¥É¤ò¼Â¹Ô¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ Redhat ¥·¥¹¥Æ¥à¤Ç¤Ï¡¢¶²¤é¤¯ /etc/sysconfig/network-scripts/ifup-post ¤ÎÃæ¤Çµ½Ò¤¹¤ë¤³¤È¤È¤Ê¤ë¤Ç¤·¤ç¤¦¡£ ¤³¤ì¤¬Æ°ºî¤¹¤ë¤³¤È¤ò³Î¤«¤á¤ë¤¿¤á¤ËºÇ½é¤ÏÉ¬¤º¼êÆ°¤Ç¹Ô¤Ã¤Æ¤¯¤À¤µ¤¤¡£ # ¥Æ¡¼¥Ö¥ë 101 ¤Ï¡¢³ä¤êÅö¤Æ¤é¤ì¤¿¥Ñ¥±¥Ã¥È¤ò¤¹¤Ù¤Æ 123.123.123.11 ·ÐÍ³¤Ë»Ø¼¨¤·¤Þ¤¹¡£ /sbin/iproute add table 101 via 62123.123.123.11 # ¥Æ¡¼¥Ö¥ë 102 ¤Ï¡¢³ä¤êÅö¤Æ¤é¤ì¤¿¥Ñ¥±¥Ã¥È¤ò¤¹¤Ù¤Æ 123.123.123.12 ·ÐÍ³¤Ë»Ø¼¨¤·¤Þ¤¹¡£ /sbin/iproute add table 102 via 62123.123.123.12 ¤³¤ÎÃÊ³¬¤Ç¤Ï¡¢192.168.1.x ¤«¤é³°Éô¤ÎÀ¤³¦¤Ø¤Î¥Ñ¥±¥Ã¥È¤¬ 123.123.123.11 ¤ò·ÐÍ³¤·¤Æ¤ª¤ê¡¢ 192.168.2.x ¤«¤é¤Î¥Ñ¥±¥Ã¥È¤Ï 123.123.123.12 ¤ò·ÐÍ³¤·¤Æ¤¤¤ë¤³¤È¤òÃÎ¤Ã¤Æ¤ª¤¤¤Æ¤¯¤À¤µ¤¤¡£ ¥ë¡¼¥Æ¥£¥ó¥°¤¬Àµ³Î¤Ë¤Ê¤Ã¤¿¤é¡¢º£ÅÙ¤Ï¤É¤ó¤Ê IPFWADM ¤¢¤ë¤¤¤Ï IPCHAINS ¥ë¡¼¥ë¤ò¤â²Ã¤¨¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ ¼¡¤ÎÎã¤Ï IPCHAINS ÍÑ¤Ç¤¹ - /sbin/ipchains -A forward -i ppp+ -j MASQ ¤¹¤Ù¤Æ¤ÎÀßÄê¤¬¹ç¤Ã¤Æ¤¤¤ë¾ì¹ç¡¢¥Þ¥¹¥«¥ì¡¼¥É¡¦¥³¡¼¥É¤Ï¥Ñ¥±¥Ã¥È¤¬ 123.123.123.11 ¤È 123.123.123.12 ·ÐÍ³¤Ë¥ë¡¼¥Æ¥£¥ó¥°¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò¸«¤Æ¡¢¥Þ¥¹¥«¥ì¡¼¥É¤Î Á÷¿®¸µ¡¦¥¢¥É¥ì¥¹¤È¤·¤Æ¤½¤ì¤é¤Î¥¢¥É¥ì¥¹¤ò»ÈÍÑ¤·¤Þ¤¹¡£ </verb> </tscreen>   <sect1> ¤Ê¤¼¿·¤·¤¤ 2.1.x µÚ¤Ó 2.2.x ¥«¡¼¥Í¥ë¤Ï¡¢IPFWADM ¤ÎÂå¤ï¤ê¤Ë IPCHAINS ¤ò»È¤¦¤Î¤Ç¤¹¤«?  IPCHAINS ¤Ï IPFWADM ¤¬»ý¤Ã¤Æ¤¤¤Ê¤¤¼¡¤Îµ¡Ç½¤ò¥µ¥Ý¡¼¥È¤·¤Þ¤¹¡£ - <itemize>  <item>"¥µ¡¼¥Ó¥¹¤Î¼Á " (QoS ¥µ¥Ý¡¼¥È)  <item>IPFWADM ¤Î¤è¤¦¤ÊÀþ·Á¥·¥¹¥Æ¥à¤ËÂÐ¤·¤Æ¡¢¥Ä¥ê¡¼·Á¼°¤Î ¥Á¥§¥¤¥ó¥·¥¹¥Æ¥à¤Ç¤¹¡£(Îã¤¨¤Ð¡¢ IPCHAINS ¤Ï¡Ö¤â¤·¤½¤ì¤¬ ppp0 ¤Ç¤¢¤ì¤Ð¡¢ (°Û¤Ê¤ë¥ë¡¼¥ë·²¤ò´Þ¤ó¤Ç¤¤¤ë)¤³¤Î¥Á¥§¥¤¥ó¤Ë¥¸¥ã¥ó¥×¤»¤è¡£¡×¤ÎÍÍ¤Ê¤³¤È¤¬ ¤Ç¤¤Þ¤¹¡£)  <item>IPCHAINS ¤ÏÀßÄê¤¬¤è¤ê½ÀÆð¤Ç¤¹¡£ Îã¤¨¤Ð¡¢("insert" ¡ÚÌõÃí: ÁÞÆþ¡Û¤È "add" ¡ÚÌõÃí: ÄÉ²Ã¡Û¤Ë²Ã¤¨¤Æ) "replace" ¡ÚÌõÃí: ÃÖ´¹¡Û¥³¥Þ¥ó¥É¤òÁõÈ÷¤·¤Æ¤¤¤Þ¤¹¡£ ¤µ¤é¤Ë¥ë¡¼¥ë¤òÈÝÄê¤¹¤ë¤³¤È¤¬¤Ç¤¤Þ¤¹¡£ (Îã¤¨¤Ð¡¢¡Ö»ä¤Î¥Í¥Ã¥È¥ï¡¼¥¯¾å¤ÇÅÐÏ¿ºÑ¤ß¤Î IP ¥¢¥É¥ì¥¹¤«¤éÈ¯À¸¤·¤¿ ¤â¤Î¤Ç¤Ï¤Ê¤¤³°¸þ¤¤Î¥Ñ¥±¥Ã¥È¤òÁ´¤ÆÇÑ´þ¤·¤Þ¤¹¡£¡×¤ÈÀßÄê¤¹¤ì¤Ð¡¢ ¤¢¤Ê¤¿¤ÏÂåÍý¹¶·â¤Î¸»¤Ë¤Ï¤Ê¤é¤º¤ËºÑ¤ß¤Þ¤¹¡£)  <item>IPCHAINS¤ÏÃ±¤Ê¤ëTCP, UDP, ICMP ¤À¤±¤Ç¤Ê¤¯¡¢Ç¤°Õ¤Î IP ¥×¥í¥È¥³¥ë¤ò ÌÀ¼¨Åª¤Ë¥Õ¥£¥ë¥¿¤Ç¤¤Þ¤¹¡£ </itemize>   <sect1> ¥«¡¼¥Í¥ë¤ò 2.2.x ¤Ë¥¢¥Ã¥×¥°¥ì¡¼¥É¤·¤¿¤é¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬ Æ°¤«¤Ê¤¯¤Ê¤ê¤Þ¤·¤¿¡£¤Ê¤¼¤Ç¤·¤ç¤¦?  IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò¹Ô¤Ã¤Æ¤¤¤ë Linux ¥Þ¥·¥ó¤¬¡¢´û¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤È LAN ¤Ë Àµ¤·¤¯ÀÜÂ³¤µ¤ì¤Æ¤¤¤ë¤Î¤Ç¤¢¤ì¤Ð¡¢°Ê²¼¤Î¹àÌÜ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤ - <itemize>  <item>É¬Í×¤Êµ¡Ç½¤È¥â¥¸¥å¡¼¥ë¤¬¥³¥ó¥Ñ¥¤¥ë¤µ¤ì¡¢¥í¡¼¥É¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò ³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£ ¾Ü¤·¤¯¤Ï¡¢Á°¤ÎÊý¤Î¾Ï¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£  <item><tt>/usr/src/linux/Documentation/Changes</tt> ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¡¢ ºÇÄã¸ÂÉ¬Í×¤Ê¥Í¥Ã¥È¥ï¡¼¥¯´Ø·¸¤Î¥Ä¡¼¥ë¤¬¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò ³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£  <item>¤³¤Î HOWTO ¤Î <ref id="Testing" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥Æ¥¹¥È"> ¤Î¾Ï¤ÎÃæ¤Ë¤¢¤ë¤¹¤Ù¤Æ¤Î¥Æ¥¹¥È¤Ë½¾¤Ã¤¿¤«³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£  <item>IP ¥Þ¥¹¥«¥ì¡¼¥É¤È¥Õ¥¡¥¤¥¢¡¼¥¦¥©¡¼¥ë¡¦¥ë¡¼¥ë¤òÀßÄê¤¹¤ë¤¿¤á¤Ë <url url="http://netfilter.filewatcher.org/ipchains/" name="ipchains"> ¤ò »È¤ï¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£  <item>É¸½à¤Î IPAUTOFW µÚ¤Ó IPPORTFW ¥Ý¡¼¥ÈÅ¾Á÷¥×¥í¥°¥é¥à¤Ï <url url="http://juanjox.kernelnotes.org/" name="IPMASQADM"> ¤ËÃÖ¤´¹¤¨¤é¤ì¤Þ¤·¤¿¡£ ¥«¡¼¥Í¥ë¤Ë¤³¤ì¤é¤Î¥Ñ¥Ã¥Á¤òÅö¤Æ¡¢¥«¡¼¥Í¥ë¤òºÆ¥³¥ó¥Ñ¥¤¥ë¤·¡¢¿·¤·¤¤ IPMASQADM ¥Ä¡¼¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤·¡¢¤«¤Ä¡¢¼¡¤Ë¸Å¤¤ IPAUTOFW/IPPORTFW ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥ë¡¼¥ë¥»¥Ã¥È¤ò¿·¤·¤¤¹½Ê¸¤ËÊÑ´¹¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¤³¤ì¤Ï¡¢ <ref id="Forwarders" name="¥Õ¥©¥ï¡¼¥À (¥Ý¡¼¥ÈÅ¾Á÷¥Ä¡¼¥ë)"> ¤Î¾Ï¤Ç´°Á´¤ËÌÖÍå¤µ¤ì¤Æ¤¤¤Þ¤¹¡£  <item>Á´¤Æ¤ÎÀßÄê¤ò¤â¤¦°ìÅÙ¤ä¤êÄ¾¤·¤Æ¤ß¤Þ¤·¤ç¤¦! ¸¶°ø¤ÎËØ¤É¤Ï¥³¥Þ¥ó¥É¤ÎÂÇ¤Á´Ö°ã¤¤¤äÃ±½ã¤Ê¥ß¥¹¤Î¸«Æ¨¤·¤Ç¤¹¡£ </itemize>   <sect1> ¥«¡¼¥Í¥ë¤ò 2.0.38 (¤¢¤ë¤¤¤Ï¤½¤ì°Ê¹ß) ¤Ë¥¢¥Ã¥×¥°¥ì¡¼¥É¤·¤¿¤é¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬Æ°¤«¤Ê¤¯¤Ê¤ê¤Þ¤·¤¿¡£¤Ê¤¼¤Ç¤·¤ç¤¦?  IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò¹Ô¤Ã¤Æ¤¤¤ë Linux ¥Þ¥·¥ó¤¬¡¢´û¤Ë¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤È LAN ¤Ë Àµ¤·¤¯ÀÜÂ³¤µ¤ì¤Æ¤¤¤ë¤Î¤Ç¤¢¤ì¤Ð¡¢°Ê²¼¤Î¹àÌÜ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤ß¤Æ¤¯¤À¤µ¤¤ - <itemize>  <item>É¬Í×¤Êµ¡Ç½¤È¥â¥¸¥å¡¼¥ë¤¬¥³¥ó¥Ñ¥¤¥ë¤µ¤ì¡¢¥í¡¼¥É¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£¾Ü¤·¤¯¤Ï¡¢Á°¤ÎÊý¤Î¾Ï¤ò¸«¤Æ¤¯¤À¤µ¤¤¡£  <item><tt>/usr/src/linux/Documentation/Changes</tt> ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¡¢ºÇÄã¸ÂÉ¬Í×¤Ê¥Í¥Ã¥È¥ï¡¼¥¯´Ø·¸¤Î¥Ä¡¼¥ë¤¬¥¤¥ó¥¹¥È¡¼¥ë¤µ¤ì¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤Æ¤¯¤À¤µ¤¤¡£  <item>¤³¤Î HOWTO ¤Î <ref id="Testing" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥Æ¥¹¥È"> ¤Î¾Ï¤ÎÃæ¤Ë¤¢¤ëÁ´¤Æ¤Î¥Æ¥¹¥È¤Ë½¾¤Ã¤¿¤«³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£  <item>IP ¥Þ¥¹¥«¥ì¡¼¥É¤È¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥ë¡¼¥ë¤òÀßÄê¤¹¤ë¤¿¤á¤Ë¤Ï<url url="http://www.xos.nl/" name="ipfwadm"> ¤ò»È¤ï¤Ê¤±¤ì¤Ð¤Ê¤ê¤Þ¤»¤ó¡£ ¤â¤· IPCHAINS ¤ò»È¤¤¤¿¤¤¤Î¤Ê¤é¡¢¥«¡¼¥Í¥ë 2.0.x ¤Ë¥Ñ¥Ã¥Á¤òÅö¤Æ¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£  <item>Á´¤Æ¤ÎÀßÄê¤ò¤â¤¦°ìÅÙ¤ä¤êÄ¾¤·¤Æ¤ß¤Þ¤·¤ç¤¦! ¸¶°ø¤ÎËØ¤É¤Ï¥³¥Þ¥ó¥É¤ÎÂÇ¤Á´Ö°ã¤¤¤äÃ±½ã¤Ê¥ß¥¹¤Î¸«Æ¨¤·¤Ç¤¹¡£ </itemize>   <sect1>EQL ÀÜÂ³¤È IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò»È¤¿¤¤¤Î¤Ç¤¹¤¬¡£  EQL ¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ï¡¢¤è¤¯ Linux ¥Ü¥Ã¥¯¥¹¾å¤ÇÁÈ¤ß¹ç¤ï¤»¤é¤ì¤Þ¤¹¤¬¡¢ ¤³¤ì¤é¤ÏÁ´¤¯´Ø·¸¤¢¤ê¤Þ¤»¤ó¡£ EQL ¤¬É¬Í×¤Ê¤é¡¢<htmlurl url="http://home.indyramp.com/masq/eql/eql.html" name="Robert Novak's EQL HOWTO"> ¤ÎºÇ¿·¥Ð¡¼¥¸¥ç¥ó¤ò¥Á¥§¥Ã¥¯¤¹¤ë¤³¤È¤òÁ¦¤á¤Þ¤¹¡£   <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤¬Æ°ºî¤·¤Æ¤¯¤ì¤Þ¤»¤ó! Windows ¥×¥é¥Ã¥È¥Õ¥©¡¼¥à¾å¤Ç¤ÎÁªÂò»è¤Ï¤¢¤ê¤Þ¤¹¤«?   ºÇÄã¸Â¤Î¥Ï¡¼¥É¥¦¥§¥¢¤ÇÆ°ºî¤·¡¢¥Õ¥ê¡¼¤Ç¿®ÍêÀ¤¬¤¢¤ê¡¢¹âÀÇ½¤Ê²ò·èË¡¤ò Äü¤á¤Æ¡¢½Å¤¤¥Ï¡¼¥É¥¦¥§¥¢¤òÉ¬Í×¤È¤¹¤ë¡¢ÀÇ½¤ÎÄã¤¤¡¢¤½¤Î¾å¿®ÍêÀ¤â¤Ê¤¤ ÊýË¡¤Î°Ù¤Ë¶â¤òÊ§¤¦¤Î¤Ç¤¹¤«? (¤³¤ì¤Ï»ä¤Î¸Ä¿ÍÅª¤Ê°Õ¸«¤Ç¤¹¡£ÌÞÏÀ¡¢»ä¤â¼ÂºÝ¤Ë ¤³¤Î¤è¤¦¤Ê·Ð¸³¤ò¤·¤¿¤³¤È¤¬¤¢¤ê¤Þ¤¹ ;-)  ¤¤¤¤¤Ç¤·¤ç¤¦¡¢¤¢¤Ê¤¿¤¬É¬Í×¤À¤È¸À¤¦¤Ê¤é»ÅÊý¤¬¤¢¤ê¤Þ¤»¤ó¡£ Windows NAT µÚ¤Ó/Ëô¤Ï ¥×¥í¥¥·¤Ë¤è¤ë²ò·è¤òË¾¤à¤Î¤Ê¤é¡¢¤³¤³¤ËÃúÅÙÎÉ¤¤°ìÍ÷¤¬ ¤¢¤ê¤Þ¤¹¡£ »ä¤Ï¤³¤ì¤é¤Î¥Ä¡¼¥ë¤Ë´Ø¤·¤Æº£¤Þ¤Ç»È¤Ã¤¿¤³¤È¤¬¤Ê¤¤¤Î¤Ç¡¢¤³¤ì¤é¤Î¹¥¤ß¤Ï ¤ï¤«¤ê¤Þ¤»¤ó¡£ <itemize>  <item>Firesock (Trumpet Winsock¤Î¥á¡¼¥«¡¼¤«¤é) <itemize> <item>Does Proxy <item><htmlurl url="http://www.trumpet.com.au" name="http://www.trumpet.com.au"> </itemize>  <item>Iproute <itemize> <item>286+ ¥¯¥é¥¹¤Î¥³¥ó¥Ô¥å¡¼¥¿¤ÇÆ¯¤¯¤è¤¦¤ËÀß·×¤µ¤ì¤¿ DOS ¥×¥í¥°¥é¥à¡£ <item>Linux ¥Þ¥¹¥«¥ì¡¼¥É¤Î¤è¤¦¤ÊÂ¾¤Î¥Ü¥Ã¥¯¥¹¤òÉ¬Í×¤È¤¹¤ë¡£ <item><htmlurl url="http://www.mischler.com/iproute/" name="http://www.mischler.com/iproute/"> </itemize>  <item>Microsoft Proxy <itemize> <item>Windows NT Server ¤¬É¬Í× <item>Èó¾ï¤Ë¹â²Á <item><htmlurl url="http://www.microsoft.com" name="http://www.microsoft.com"> </itemize>  <item>NAT32 <itemize> <item>Windows 95/98/NT ¥³¥ó¥Ñ¥Á¥Ö¥ë <item><htmlurl url="http://www.nat32.com" name="http://www.nat32.com"> <item>Win9x ÍÑ¤ÏÌó $25 Win9x ¤È WinNT ÍÑ¤ÏÌó $47 </itemize> <item>SyGate <itemize> <item><htmlurl url="http://www.sygate.com" name="http://www.sygate.com"> </itemize>  <item>Wingate <itemize> <item>¥×¥í¥¥·µ¡Ç½ <item>²Á³Ê¤Ï 2-3 ¥¯¥é¥¤¥¢¥ó¥ÈÍÑ¤Ç $30 <item><htmlurl url="http://www.wingate.com" name="http://www.wingate.com"> </itemize> <item>Winroute <itemize> <item>NAT µ¡Ç½ <item><htmlurl url="http://www.winroute.cz/en/" name="http://www.winroute.cz/en/"> </itemize> </itemize>  ºÇ¸å¤Ë "MS Proxy Server", "Wingate", "WinProxy" ¤Ç¥¦¥§¥Ö¥µ¡¼¥Á¤ò¤¹¤ë¤«¡¢<url url="http://www.winfiles.com" name="www.winfiles.com"> ¤Ë¹Ô¤Ã¤Æ¤ß¤Æ¤¯¤À¤µ¤¤¡£¤Ç¤â¡¢ÀäÂÐ¤ËÃ¯¤Ë¤â»ä¤¿¤Á¤¬¶µ¤¨¤¿¤È¸À¤ï¤Ê¤¤¤Ç¤¯¤À¤µ¤¤¡£ ¡ÚÌõÃí: ÆüËÜ¤Ç¤Ï <htmlurl url="http://homepage2.nifty.com/spw/bjd/index.html" name="BlackJumboDog"> ¤¬ÍÌ¾¤Ç¤·¤ç¤¦¡£¡Û   <sect1> IP¥Þ¥¹¥«¥ì¡¼¥É³«È¯¤Ë¶¨ÎÏ¤·¤¿¤¤¤Î¤Ç¤¹¤¬¡¢²¿¤¬¤Ç¤¤Þ¤¹¤«?  Linux IP ¥Þ¥¹¥«¥ì¡¼¥É³«È¯¼Ô¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë»²²Ã¤·¤Æ¡¢¤¢¤Ê¤¿¤Î¤Ç¤¤ë¤³¤È¤ò³«È¯¼Ô¤Ë¿Ò¤Í¤Æ¤¯¤À¤µ¤¤¡£¥ê¥¹¥È¤Ø¤Î»²²Ã¤Ë¤Ä¤¤¤Æ¤Î¤è¤ê¾ÜºÙ¤Ï¡¢FAQ¤Î¾Ï¤Î <ref id="Masq-List" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥á¡¼¥ê¥ó¥°¥ê¥¹¥È"> ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£  ¤½¤³¤Ç IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î³«È¯¤Ë´Ø·¸¤Ê¤¤¼ÁÌä¤Ï¤·¤Ê¤¤¤Ç¤¯¤À¤µ¤¤!!!!   <sect1> IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¤¬¤â¤Ã¤ÈÍß¤·¤¤¤Î¤Ç¤¹¤¬¡£  IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ë´Ø¤¹¤ë¤è¤êÂ¿¤¯¤Î¾ðÊó¤Ï David Ranch ¤¬´ÉÍý¤·¤Æ¤¤¤ë <url url="http://ipmasq.cjb.net/" name="Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤Ç¸«¤Ä¤±¤é¤ì¤Þ¤¹¡£  ¤Þ¤¿ TrinityOS ¤ÈÂ¾¤Î Linux ¤ÎÊ¸½ñ¤¬´Þ¤Þ¤ì¤Æ¤¤¤ë <url url="http://www.ecst.csuchico.edu/˜dranch/LINUX/index-linux.html" name="Dranch's Linux page"> ¤Ë¤Æ¡¢¤è¤êÂ¿¤¯¤Î¾ðÊó¤ò¸«¤Ä¤±¤é¤ì¤Þ¤¹¡£  IP ¥Þ¥¹¥«¥ì¡¼¥É¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤òÄó¶¡¤·¤Æ¤¤¤ë Indyramp Consulting ¤¬´ÉÍý¤·¤Æ¤¤¤ë <url url="http://www.indyramp.com/masq/" name="The Semi-Original Linux IP Masquerading Web Site"> ¤Ç¤â¡¢¤â¤Ã¤ÈÂ¿¤¯¤Î¾ðÊó¤ò¸«¤Ä¤±¤é¤ì¤ë¤Ç¤·¤ç¤¦¡£  ºÇ¸å¤Ë IP ¥Þ¥¹¥«¥ì¡¼¥É¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Î¥¢¡¼¥«¥¤¥Ö¤ä IP ¥Þ¥¹¥«¥ì¡¼¥É ³«È¯¼Ô¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Î¥¢¡¼¥«¥¤¥Ö¤ÎÃæ¤«¤éÆÃÄê¤Î¼ÁÌä¤òÁÜ¤¹¤³¤È¤¬¤Ç¤¤Þ¤¹¤·¡¢ ¤³¤ì¤é¤Î¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë¼ÁÌä¤ò¤¹¤ë¤³¤È¤â¤Ç¤¤Þ¤¹¡£ ¾ÜºÙ¤Ï FAQ ¤Î <ref id="Masq-List" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥á¡¼¥ê¥ó¥°¥ê¥¹¥È"> ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£   <sect1> ¤³¤Î HOWTO ¤òÊÌ¤Î¸À¸ì¤ËËÝÌõ¤·¤¿¤¤¤Î¤Ç¤¹¤¬¡¢¤É¤¦¤¹¤ì¤Ð¤¤¤¤¤Ç¤·¤ç¤¦?   Ìõ¤½¤¦¤È¤¹¤ë¸À¸ì¤Ç¤ÎËÝÌõ¤ò¡¢¤Þ¤ÀÃ¯¤â½Ð¤·¤Æ¤¤¤Ê¤¤¤³¤È¤ò³ÎÇ§¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤·¤«¤·¡¢ËÝÌõ¤µ¤ì¤¿ HOWTO ¤ÎËØ¤É¤Ïº£¸Å¤¯¤Ê¤Ã¤Æ¤¤¤Æ¡¢¹¹¿·¤¹¤ëÉ¬Í×¤¬¤¢¤ê¤Þ¤¹¡£ ¸½ºß¤¢¤ë HOWTO ËÝÌõ¤Î°ìÍ÷¤Ï <url url="http://ipmasq.cjb.net/" name="Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤Ç¸«¤Ä¤±¤é¤ì¤Þ¤¹¡£  ¤â¤·ËÝÌõ¤·¤¿¤¤¸À¸ì¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É HOWTO ¤Î<bf>¸½¥Ð¡¼¥¸¥ç¥ó</bf>¤Î ¥³¥Ô¡¼¤¬Ìµ¤±¤ì¤Ð¡¢ <url url="http://ipmasq.cjb.net/" name="Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤«¤é IP ¥Þ¥¹¥«¥ì¡¼¥É HOWTO ¤Î SGML ¥³¡¼¥É¤ÎºÇ¿·ÈÇ¤ò¥À¥¦¥ó¥í¡¼¥É¤·¤Æ¤¯¤À¤µ¤¤¡£ ¤½¤³¤«¤é¡¢ÎÉ¤¤ SGML ¥³¡¼¥Ç¥£¥ó¥°¤ò°Ý»ý¤·¤Ê¤¬¤éËÝÌõ¤ò¿Ê¤á¤Æ¤¯¤À¤µ¤¤¡£ SGML ¤Ë´Ø¤¹¤ë¤è¤êÂ¿¤¯¤Î¥Ø¥ë¥×¤Ë¤Ä¤¤¤Æ¤Ï¡¢<url url="http://www.sgmltools.org" name="www.sgmltools.org"> ¤ò¥Á¥§¥Ã¥¯¤·¤Æ¤¯¤À¤µ¤¤¡£   <sect1> ¤³¤Î HOWTO ¤Ï¸Å¤¯¤Ê¤Ã¤Æ¤¤¤ë¤è¤¦¤Ë¸«¤¨¤Þ¤¹¤¬¡¢¤Þ¤À¤³¤ì¤òÊÝ¼é¤·Â³¤±¤Æ ¤¤¤Þ¤¹¤«? ...¤Ë´Ø¤¹¤ë¾ðÊó¤òÄÉ²Ã¤·¤Æ¤â¤é¤¨¤Þ¤¹¤«? ¤³¤Î HOWTO ¤ò²þÁ±¤¹¤ëÍ½Äê¤Ï¤¢¤ê¤Þ¤¹¤«?  ¤Ï¤¤¡¢¤³¤Î HOWTO ¤ÏÊÝ¼é¤µ¤ìÂ³¤±¤Æ¤¤¤Þ¤¹¡£ ¤´¤á¤ó¤Ê¤µ¤¤¡£ ²áµî¤Ë»ä¤¿¤Á¤Ï 2 ¤Ä¤Î»Å»ö¤ÇË»¤·²á¤®¤Æ¡¢¤³¤Î²þÄû¤ËÈñ¤ä¤¹»þ´Ö¤¬¼è¤ì¤º¤Ë ¤¤¤Þ¤·¤¿¡£ v1.50 ¤Î»þÅÀ¤Ç¡¢ David Ranch ¤ÏÊ¸½ñ¤òÂçÉý¤Ë²þÄû¤·¡¢¸½ºß¤Î¤â¤Î¤Ë¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£  HOWTO¤Ë ´Þ¤á¤¿Êý¤¬¤è¤¤¤È»×¤ï¤ì¤ë¥È¥Ô¥Ã¥¯¤¬¤¢¤ì¤Ð¡¢ <htmlurl url="mailto:ambrose@writeme.com" name="ambrose@writeme.com"> µÚ¤Ó <htmlurl url="mailto:dranch@trinnet.net" name="dranch@trinnet.net"> °¸¤Ë ¥á¡¼¥ë¤òÁ÷¤Ã¤Æ¤¯¤À¤µ¤¤¡£ ¾Ü¤·¤¤¾ðÊó¤òÄó¶¡¤·¤Æ¤¯¤ì¤ë¤È¤â¤Ã¤È¤¤¤¤¤Ç¤¹¤Í¡£ ¤½¤Î¸å¡¢¤½¤Î¾ðÊó¤¬Å¬ÀÚ¤Ç¤¢¤ë¤³¤È¤¬¤ï¤«¤ê¡¢¤Þ¤¿¥Æ¥¹¥È¤Ç³ÎÇ§¤Ç¤¤¿¤é HOWTO ¤Ø ´Þ¤á¤Þ¤¹¡£¤´¶¨ÎÏ¤Ë´¶¼Õ¤·¤Þ¤¹!  »äÃ£¤Ï¤³¤Î HOWTO ¤ò²þÁ±¤¹¤ë¤¿¤á¤Î¥¢¥¤¥Ç¥¢¤È·×²è¤ò»ý¤Ã¤Æ¤¤¤Þ¤¹¡£ ¤½¤ÎÃæ¤Ë¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò»È¤¤¡¢°Û¤Ê¤Ã¤¿¥Í¥Ã¥È¥ï¡¼¥¯¤Î¥»¥Ã¥È¥¢¥Ã¥×¤ò ¥«¥Ð¡¼¤¹¤ë¥±¡¼¥¹¡¦¥¹¥¿¥Ç¥£¤ä¡¢ IPFWADM/IPCHAINS ¤ò»È¤Ã¤¿¶¯¤¤ ¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¡¦¥ë¡¼¥ë¥»¥Ã¥È¤Ç¤Î°ÂÁ´À¶¯²½¡¢ IPCHAINS ¤Î»ÈÍÑË¡¡¢ ¤è¤êÂ¿¤¯¤Î FAQ ¥¨¥ó¥È¥êÅù¤¬¤¢¤ê¤Þ¤¹¡£ ¤â¤·¤¢¤Ê¤¿¤¬¶¨ÎÏ¤·¤Æ¤¯¤ì¤ë¤Ê¤é¡¢À§Èó¤ª´ê¤¤¤·¤Þ¤¹! µ¹¤·¤¯¤ª´ê¤¤¤·¤Þ¤¹¡£   <sect1> IP¥Þ¥¹¥«¥ì¡¼¥É¤¬Æ°ºî¤·¤Æ¤¯¤ì¤Þ¤·¤¿¡£ ¤³¤ì¤ÏÁÇÀ²¤é¤·¤¤! »ä¤Ï¤¢¤Ê¤¿¤¬¤¿¤Ë´¶¼Õ¤·¤¿¤¤¤Î¤Ç¤¹¤¬¡¢²¿¤¬¤Ç¤¤ë¤Ç¤·¤ç¤¦¤«? <itemize>  <item>HOWTO ¤Î¤è¤ê¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó¤òÊÌ¤Î¸À¸ì¤ËËÝÌõ¤·¤Æ¤¤¤¿¤À¤±¤Þ¤»¤ó¤«¡£ <item>³«È¯¼Ô¤Ë´¶¼Õ¤·¤Æ¡¢¤«¤ì¤é¤¬¤³¤ì¤ËÈñ¤ä¤·¤¿»þ´ÖµÚ¤ÓÅØÎÏ¤ò É¾²Á¤·¤Æ¤¯¤À¤µ¤¤¡£ <item>IP ¥Þ¥¹¥«¥ì¡¼¥É¡¦¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë»²²Ã¤·¡¢¿·µ¬¤Î¥Þ¥¹¥«¥ì¡¼¥É¥æ¡¼¥¶¤ò »Ù±ç¤·¤Æ¤¯¤À¤µ¤¤¡£ <item>»ä¤¿¤Á¤Ø¥á¡¼¥ë¤òÁ÷¤ê¡¢¤¢¤Ê¤¿¤¬¤É¤ó¤Ê¤Ë¹¬Ê¡¤«ÃÎ¤é¤»¤Æ¤¯¤À¤µ¤¤¡£ <item>Â¾¤Î¿Í¡¹¤Ë Linux ¤ò¼ê¤Û¤É¤¤·¤Æ¡¢Èà¤é¤¬ÌäÂê¤òÊú¤¨¤Æ¤¤¤¿¾ì¹ç¡¢Èà¤é¤ò »Ù±ç¤·¤Æ¤¢¤²¤Æ¤¯¤À¤µ¤¤¡£ </itemize>     <sect>¤½¤ÎÂ¾¤Î¾ðÊó   <sect1> ÍÍÑ¤Ê¾ðÊó¸»  <itemize> <item><url url="http://ipmasq.cjb.net/" name="Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤Ë¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤ÎÀßÄê¤Ë´Ø¤¹¤ëºÇ¿·¾ðÊó¤ÎÁ´¤Æ¤¬ËþºÜ¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ 2.0.x, 2.2.x, ¤½¤·¤Æ¸Å¤¤ 1.2 ¥«¡¼¥Í¥ë¤µ¤¨¤âÌÖÍå¤µ¤ì¤Æ¤¤¤Þ¤¹! <item>¸½ºß¤Î Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î´ÉÍý¼Ô¤Ç¤¢¤ë <url url="http://juanjox.kernelnotes.org" name="Juan Jose Ciarlante ¤Î WWW ¥µ¥¤¥È"> ¡£ <item><url url="http://www.indyramp.com/lists/masq" name="IP ¥Þ¥¹¥«¥ì¡¼¥É¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¥¢¡¼¥«¥¤¥Ö"> ¤Ë¤Ï¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤ËÅê¹Æ¤µ¤ì¤¿ºÇ¿·¤Î¥á¥Ã¥»¡¼¥¸¤¬¤¢¤ê¤Þ¤¹¡£ <item><url url="http://www.ecst.csuchico.edu/˜dranch/LINUX/index-linux.html" name="TrinityOS Linux Ê¸½ñµÚ¤Ó IP-MASQ-HOWTO ¤ÎºÇ¿·¥Ð¡¼¥¸¥ç¥ó¤ò´Þ¤à David Ranch ¤Î Linux web ¥Ú¡¼¥¸"> ¡£ ¶¯¤¤ IPFWADM/IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¡¢ PPP, Diald, ¥±¡¼¥Ö¥ë¥â¥Ç¥à, DNS, Sendmail, Samba, NFS, ¥»¥¥å¥ê¥Æ¥£Åù¤Î¡¢ IP MASQ ¤Ë´Ø¤¹¤ëÏÃÂê¤¬ËþºÜ¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ <item>The <url url="http://www.tsmservices.com/masq" name="IP Masquerading Applications page">: Linux IP ¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¥µ¡¼¥Ð¾å¤ÇÆ°ºî¤¹¤ë¤«¡¢°¿¤ÏÆ°ºî¤¹¤ë¤è¤¦¤ËÄ´À°¤µ¤ì¤Æ¤¤¤ë¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤ÎÊñ³çÅª¤Ê¥ê¥¹¥È¡£ <item>MkLinux ¾å¤Ç IP Masq ¤òÀßÄê¤¹¤ë¤Ê¤é¡¢ <htmlurl url="mailto:tarozax@earthlink.net" name="tarozax@earthlink.net"> ¤Î Taro Fukunaga »á¤Ë¥á¡¼¥ë¤·¤Æ¡¢Èà¤Ë¤è¤ë¤³¤Î HOWTO ¤Î MkLinux ¥Ð¡¼¥¸¥ç¥ó¤Î Ã»¤¤¥³¥Ô¡¼¤òÆþ¼ê¤·¤Æ¤¯¤À¤µ¤¤¡£ <item><url url="http://www.indyramp.com/masq/ip_masquerade.txt" name="IP masquerade FAQ"> ¤Ë¤ÏÁ´ÈÌÅª¤Ê¾ðÊó¤¬´ö¤Ä¤«¤¢¤ê¤Þ¤¹¡£ <item>Paul Russel ¤Î <htmlurl url="http://netfilter.filewatcher.org/ipchains/" name="http://netfilter.filewatcher.org/ipchains/"> ¤Ë¤¢¤ë IPCHAINS-HOWTO ¡£¤½¤·¤Æ¤³¤Î¸Å¤¤¥Ð¥Ã¥¯¥¢¥Ã¥×¤¬ <htmlurl url="http://www.linuxdocs.org/IPCHAINS-HOWTO.html" name="Linux IPCHAINS HOWTO"> ¤Ë¤¢¤ê¤Þ¤¹¡£ ¤³¤Î HOWTO ¤Ë¤Ï IPCHAINS ¤Î»È¤¤Êý¤Ë´Ø¤¹¤ë¾ðÊó¤¬ËþºÜ¤µ¤ì¤Æ¤ª¤ê¡¢ ipchains ¥Ä¡¼¥ë¤Î¥½¡¼¥¹¥³¡¼¥É¤È¥Ð¥¤¥Ê¥ê¤âÆþ¼ê¤Ç¤¤Þ¤¹¡£ ¡ÚÌõÃí: ÆüËÜ¸ìÌõ¤Ï <htmlurl url="http://www.linux.or.jp/JF/JFdocs/IPCHAINS-HOWTO.html"> ¤Ë¤¢¤ê¤Þ¤¹¡£¡Û <item><url url="http://www.xos.nl/linux/ipfwadm/" name="X/OS Ipfwadm page"> ¤Ë¤Ï¡¢ <tt/ipfwadm/ ¥Ñ¥Ã¥±¡¼¥¸¤Ë´Ø¤¹¤ë¥½¡¼¥¹¡¢¥Ð¥¤¥Ê¥ê¡¢Ê¸½ñµÚ¤Ó¤½¤ÎÂ¾¤Î ¾ðÊó¤¬¤¢¤ê¤Þ¤¹¡£ <item><htmlurl url="http://www.greatcircle.com/" name="GreatCircle's Firewall mailing list"> ¤ò¤è¤¯ÆÉ¤ó¤Ç¡¢¶¯¤¤¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Î°Ù¤ÎÁÇÀ²¤é¤·¤¤¾ðÊó¸»¤òÆÀ¤Æ¤¯¤À¤µ¤¤¡£ <item><url url="http://www.linuxdoc.org/LDP/nag/nag.html" name="LDP Network Administrator's Guide"> ¤Ï¡¢¥Í¥Ã¥È¥ï¡¼¥¯¤ò¹½ÃÛ¤·¤è¤¦¤È¤¹¤ë Linux ´ÉÍý¼Ô¤Î Íñ¤Ë¤È¤Ã¤ÆÉ¬·È¤ÎÊ¸½ñ¤Ç¤¹¡£ <item><url url="http://www.linuxdoc.org/HOWTO/NET3-4-HOWTO.html" name="Linux NET-3-4 HOWTO"> ¤â¤Þ¤¿ Linux ¥Í¥Ã¥È¥ï¡¼¥¯¤ò¹½ÃÛ¤·¡¢ÀßÄê¤¹¤ë°Ù¤Î¡¢ ¤â¤¦°ì¤Ä¤ÎÊñ³çÅª¤ÊÊ¸½ñ¤Ç¤¹¡£ <item><url url="http://www.linuxdoc.org/HOWTO/ISP-Hookup-HOWTO.html" name="Linux ISP Hookup HOWTO"> µÚ¤Ó <url url="http://www.linuxdoc.org/HOWTO/PPP-HOWTO.html" name="Linux PPP HOWTO"> ¤Ï¡¢¤¢¤Ê¤¿¤Î Linux ¥Û¥¹¥È¤ò¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀÜÂ³¤¹¤ëÊýË¡¤Ë´Ø¤¹¤ë¾ðÊó¤ò Äó¶¡¤·¤Þ¤¹¡£ <item><url url="http://www.linuxdoc.org/HOWTO/Ethernet-HOWTO.html" name="Linux Ethernet-Howto"> ¤Ï¡¢¥¤¡¼¥µ¥Í¥Ã¥È¾å¤ÇÆ°ºî¤¹¤ë LAN ¤Î¹½ÃÛ¤Ë´Ø¤¹¤ë ÎÉ¤¤¾ðÊó¸»¤Ç¤¹¡£ <label id="Donald Becker's NIC drivers and utils FAQ-Hardware"> <item><url url="http://cesdis.gsfc.nasa.gov/linux/drivers/" name="Donald Becker NIC ¥É¥é¥¤¥Ð¤È¥µ¥Ý¡¼¥È¥æ¡¼¥Æ¥£¥ê¥Æ¥£"> ¡ÚÌõÃí: ¾åµ URI ¤Ï´û¤Ë¥ê¥ó¥¯ÀÚ¤ì¤Ç¤¹¡£¸½ºß¤Ï¡¢ <url url="http://www.scyld.com/network/" name="Linux Network Drivers"> ¤Ë°ÜÆ°¤·¤Æ¤¤¤Þ¤¹¡£¡Û <item>¤¤Ã¤È¡¢<url url="http://www.linuxdoc.org/HOWTO/Firewall-HOWTO.html" name="Linux Firewalling and Proxy Server HOWTO"> ¤Ë¤â¶½Ì£¤ò¼¨¤µ¤ì¤ë¤³¤È¤Ç¤·¤ç¤¦¡£ <item><url url="http://www.linuxdoc.org/HOWTO/Kernel-HOWTO.html" name="Linux Kernel HOWTO"> ¤Ï¤¢¤Ê¤¿¤Ë¥«¡¼¥Í¥ë¤ò¥³¥ó¥Ñ¥¤¥ë¤¹¤ëÊýË¡¤òÆ³¤¤¤Æ¤¯¤ì¤Þ¤¹¡£ <item>¾åµ Kernel HOWTO °Ê³°¤Î <url url="http://www.linuxdoc.org/HOWTO/HOWTO-INDEX/howtos.html" name="Linux HOWTO °ìÍ÷"> ¤¬¤³¤³¤Ë¤¢¤ê¤Þ¤¹¡£ <item>USENET ¥Ë¥å¡¼¥º¥°¥ë¡¼¥×¤ËÅê¹Æ¤¹¤ë¤Ê¤é: <htmlurl url="news:comp.os.linux.networking" name="comp.os.linux.networking"> </itemize>   <sect1> Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»  <url url="http://ipmasq.cjb.net/" name="Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»"> ¤Ï¡¢ Ambrose Au »á¤Ë¤è¤Ã¤Æ´ÉÍý¤µ¤ì¤Æ¤¤¤ë¡¢ Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤ËÇ®¿´¤Ê web ¥µ¥¤¥È¤Ç¤¹¡£ IP ¥Þ¥¹¥«¥ì¡¼¥É¤Ë´Ø¤¹¤ëºÇ¿·¾ðÊó¤È¡¢¤³¤Î HOWTO ¤Ë´Þ¤Þ¤ì¤Ê¤¤¾ðÊó¤¬·ÇºÜ¤µ¤ì¤Æ ¤¤¤Þ¤¹¡£  °Ê²¼¤Î¾ì½ê¤Ç¡¢Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»¤¬¸«¤Ä¤«¤ê¤Þ¤¹ -  <itemize> <item>¥×¥é¥¤¥Þ¥ê¥µ¥¤¥È - <htmlurl url="http://ipmasq.cjb.net/" name="http://ipmasq.cjb.net/"> ¤³¤³¤Ï <htmlurl url=" http://www.e-infomax.com/ipmasq/" name="http://www.e-infomax.com/ipmasq/"> ¤ØÅ¾Á÷¤µ¤ì¤Þ¤¹¡£ <item>¥»¥«¥ó¥À¥ê¥µ¥¤¥È - <htmlurl url="http://ipmasq2.cjb.net/" name="http://ipmasq2.cjb.net/"> ¤³¤³¤Ï <htmlurl url="http://members.home.net/ipmasq/" name="http://members.home.net/ipmasq/"> ¤ØÅ¾Á÷¤µ¤ì¤Þ¤¹¡£ </itemize>    <sect1> ¼Õ¼   ¥¢¥ë¥Õ¥¡¥Ù¥Ã¥È½ç -  <itemize> <item> Gabriel Beitler, gabrielb@voicenet.com &nl; 3.3.8 ¾Ï ¤Î¼¹É® (Novell ¤ÎÀßÄê) <item>Juan Jose Ciarlante, irriga@impsat1.com.ar &nl; IPFWADM ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥É¥Ä¡¼¥ë¤Ë¤ª¤±¤ëÈà¤Î¸ùÀÓ¡¢¥«¡¼¥Í¥ë 2.1.x µÚ¤Ó 2.2.x ¤Î¥³¡¼¥É¡¢¥ª¥ê¥¸¥Ê¥ë¤Î LooseUDP ¥Ñ¥Ã¥ÁÅù¡£ <item>Steven Clarke, steven@monmouth.demon.co.uk &nl;Èà¤Î IPPORTFW IP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥À¡¼¥Ä¡¼¥ë¤Ë¤ª¤±¤ë¹×¸¥¡£ <item>Andrew Deryabin, djsf@usa.net &nl;Èà¤Î ICQ MASQ ¥â¥¸¥å¡¼¥ë¤Ë¤ª¤±¤ë¹×¸¥¡£ <item>Ed Doolittle, dolittle@math.toronto.edu &nl;¥»¥¥å¥ê¥Æ¥£¤ò²þÁ±¤¹¤ë <tt/ipfwadm/ ¥³¥Þ¥ó¥É¤Î <tt/-V/ ¥ª¥×¥·¥ç¥ó¤ÎÄó°Æ¡£ <item>Matthew Driver, mdriver@cfmeu.asn.au &nl;¤³¤Î HOWTO ¤Î³ÈÄ¥¤ò¼êÅÁ¤¦¤È¶¦¤Ë¡¢ 3.3.1 ¾Ï (Windows95 ¤ÎÀßÄê) ¤ÎÄó¶¡¡£ <item>Ken Eves, ken@eves.com &nl;FAQ ¤Ë¤ª¤±¤ë¡¢¤³¤Î HOWTO ¤Î°Ù¤Îµ®½Å¤Ê¾ðÊó¤ÎÄó¶¡¡£ <item>John Hardin, jhardin@wolfenet.com&nl; Èà¤Î PPTP µÚ¤Ó IPSEC ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¥Ä¡¼¥ë¡£ <item>Glenn Lamb, mumford@netcom.com &nl;LooseUDP ¥Ñ¥Ã¥Á¡£ <item>Ed. Lott, edlott@neosoft.com &nl;¥Æ¥¹¥È¤µ¤ì¤¿¥·¥¹¥Æ¥à¤È¥½¥Õ¥È¥¦¥§¥¢¤ÎÄ¹¤¤¥ê¥¹¥È¡£ <item>Nigel Metheringham, Nigel.Metheringham@theplanet.net &nl;Èà¤Î¥Ð¡¼¥¸¥ç¥ó¤Î IP Packet Filtering and IP Masquerading HOWTO ¤Î¹×¸¥¡£ ¤³¤Î HOWTO ¤ò¤è¤êÎÉ¤¯¤·¡¢µ»½ÑÅª¤Ë¿¼¤¤Ê¸½ñ¤Ë»Å¾å¤²¤Æ¤¯¤ì¤¿¡£ &nl; 4.1, 4.2 ¾ÏµÚ¤Ó¤½¤ÎÂ¾¡£ <item>Keith Owens, kaos@ocs.com.au &nl;4.2 ¾Ï¤Î ipfwadm ¤ÎÁÇÀ²¤é¤·¤¤¼ê°ú¤ÎÄó¶¡¡£ &nl;¥»¥¥å¥ê¥Æ¥£¥Û¡¼¥ë¤ò²óÈò¤¹¤ë <tt/ipfwadm -deny/ ¥ª¥×¥·¥ç¥ó¤Î½¤Àµ¡¢µÚ¤Ó IP ¥Þ¥¹¥«¥ì¡¼¥É¾å¤Î <tt/ping/ ¤Î¾õÂÖ¤òÌÀ¤é¤«¤Ë¤·¤¿¤³¤È¡£ <item> Michael Owings, mikey@swampgas.com &nl; CU-SeeMe µÚ¤Ó Linux IP-Masquerade Teeny How-To ¤Î¾Ï¤ÎÄó¶¡ <item>Rob Pelkey, rpelkey@abacus.bates.edu &nl;3.3.6 µÚ¤Ó 3.3.7 ¾Ï¤ÎÄó¶¡ (MacTCP µÚ¤Ó ¥ª¡¼¥×¥ó¥È¥é¥ó¥¹¥Ý¡¼¥È¤ÎÀßÄê) <item>Harish Pillay, h.pillay@ieee.org &nl;4.5 ¾Ï ¤ÎÄó¶¡(Diald ¤òÍÑ¤¤¤ë¥À¥¤¥ä¥ë¥ª¥ó¥Ç¥Þ¥ó¥É) <item>Mark Purcell, purcell@rmcs.cranfield.ac.uk &nl;4.6 ¾Ï¤ÎÄó¶¡(IPautofw) <item> David Ranch, dranch@trinnet.net &nl; ¤³¤Î HOWTO ¤Î¹¹¿·µÚ¤ÓÊÝ¼é¡¢Linux IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¾ðÊó¸»¤Î web ¥Ú¡¼¥¸¡¢ TrinityOS ¤ÎÊ¸½ñ¡¢ , ..., ¤³¤³¤ËÎóµó¤¹¤ë¤Ë¤ÏÂ¿¤¹¤®¤Þ¤¹¡£ :-) <item>Paul Russell, rusty@linuxcare.com.au &nl;IPCHAINS, IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥«¡¼¥Í¥ë¥Ñ¥Ã¥ÁÅù¤Ë¤ª¤±¤ëÈà¤Î»Å»ö¡£ <item>Ueli Rutishauser, rutish@ibm.net &nl;3.3.9 ¾Ï¤ÎÄó¶¡(OS/2 Warp ¤ÎÀßÄê) <item>Steve Grevemeyer, grevemes@tsmservices.com &nl;Lee Nevo ¤«¤é IP Masq ¥¢¥×¥ê¥±¡¼¥·¥ç¥ó web ¥Ú¡¼¥¸¤ò°ú¤·Ñ¤®¡¢ DB ¥Ð¥Ã¥¯¥¨¥ó¥É¤ÎÁ´¤Æ¤ò¹¹¿·¡£ <item>Fred Viles, fv@episupport.com&nl;FTP ¤ÎÀµ¤·¤¤¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Î°Ù¤ÎÈà¤Î¥Ñ¥Ã¥Á¡£ <item>John B. (Brent) Williams, forerunner@mercury.net &nl;3.3.7 ¾Ï¤ÎÄó¶¡(¥ª¡¼¥×¥ó¥È¥é¥ó¥¹¥Ý¡¼¥È¤ÎÀßÄê) <item>Enrique Pessoa Xavier, enrique@labma.ufrj.br &nl;BOOTp ÀßÄê¤ÎÄó°Æ¡£ <item>IP-MASQ ¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¾å¤ÎÁ´¤Æ¤Î»²²Ã¼Ô, masq@tiffany.indyramp.com &nl; ¿·¤¿¤Ê Linux MASQ ¥æ¡¼¥¶¤ËÂÐ¤¹¤ë±ç½õ¤È¥µ¥Ý¡¼¥È¡£ <item>¤½¤ÎÂ¾¡¢¤³¤ÎÁÇÀ²¤é¤·¤¤µ¡Ç½¤Ç¤¢¤ë IP ¥Þ¥¹¥«¥ì¡¼¥É¤Î¥³¡¼¥ÉµÚ¤ÓÊ¸½ñ¤Î³«È¯¼Ô¡£ <quote> <itemize> <item>Delian Delchev, delian@wfpa.acad.bg <item>David DeSimone (FuzzyFox), fox@dallas.net <item>Jeanette Pauline Middelink, middelin@polyware.iaf.nl <item>Miquel van Smoorenburg, miquels@q.cistron.nl <item>Jos Vos, jos@xos.nl <item>¤½¤·¤Æ»ä¤¬¤³¤³¤ÇÎóµó¤·Ëº¤ì¤Æ¤·¤Þ¤Ã¤¿¿ÍÃ£¡£(¶µ¤¨¤Æ¤¯¤À¤µ¤¤) </itemize> </quote> <item>ÆÃ¤Ë¥É¥¥å¥á¥ó¥È¤ä¥¯¥é¥¤¥¢¥ó¥È¤Î¸í¤ê¤òÊó¹ð¤·¤¿¡¢¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ø ¥Õ¥£¡¼¥É¥Ð¥Ã¥¯¤äÄó°Æ¤òÁ÷¤ëÁ´¤Æ¤Î¥æ¡¼¥¶¤¬±ç½õ¤µ¤ì¤ë¤È¤Ï¸Â¤ê¤Þ¤»¤ó¡£ <item>¤â¤·¡¢¤Þ¤À½ÅÍ×¤ÊÌ¾Á°¤òËº¤ì¤Æ¤¤¤¿¤ê¡¢²¿¿Í¤«¤ÎÃç´Ö¤Î¥æ¡¼¥¶¤¬Á÷¤Ã¤Æ ¤¯¤ì¤¿¾ðÊóÅù¤¬´Þ¤Þ¤ì¤Æ¤¤¤Ê¤¤¤Ê¤é¡¢ÄÄ¼Õ¤·¤Þ¤¹¡£ Â¿¤¯¤ÎÄó°Æ¤È¥¢¥¤¥Ç¥£¥¢¤¬Á÷¤é¤ì¤Æ¤¤¤Þ¤¹¤¬¡¢¤½¤ì¤ò¸¡¾Ú¤·¤Æ¤³¤ÎÊ¸½ñ¤ËÅý¹ç ¤¹¤ë¤¿¤á¤Ë½½Ê¬¤Ê»þ´Ö¤¬¤¢¤ê¤Þ¤»¤ó¡£ David Ranch ¤Ï¤³¤Î HOWTO ¤Ë»ä°¸¤ËÁ÷¤é¤ì¤ëÁ´¤Æ¤Î¾ðÊó¤òÁÈ¤ßÆþ¤ì¤ë¤Ù¤¯¡¢ Èà¤ÎºÇÁ±¤ò¿Ô¤¯¤·¤Æ¤¤¤Þ¤¹¡£ Èà¤ÎÅØÎÏ¤Ë´¶¼Õ¤¹¤ë¤È¶¦¤Ë¡¢»äÃ£¤Î¤³¤Î¾õ¶·¤ò³§¤µ¤ó¤ËÍý²ò¤·¤ÆÄº¤¤¿¤¤¤È »×¤¤¤Þ¤¹¡£ </itemize>   <sect1> »²¹ÍÊ¸¸¥  <itemize> <item>Ken Eves ¤Ë¤è¤ë¥ª¥ê¥¸¥Ê¥ë¤Î IP ¥Þ¥¹¥«¥ì¡¼¥É FAQ <item>Indyramp Consulting ¤Î¡¢ IP ¥Þ¥¹¥«¥ì¡¼¥É¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¥¢¡¼¥«¥¤¥ô <item>Ambrose Au ¤Î IP Masquerade WWW ¥µ¥¤¥È <item>X/OS ¤Î Ipfwadm ¥Ú¡¼¥¸ <item>¤½¤ÎÂ¾¥Í¥Ã¥È¥ï¡¼¥¯¤Ë´Ø·¸¤¹¤ë Linux HOWTO ·² <item>David Ranch ¤Î TrinityOS ¤Ë¤ÆÌÖÍå¤µ¤ì¤Æ¤¤¤ë´ö¤Ä¤«¤ÎÏÃÂê </itemize>   <sect1> ÊÑ¹¹ÅÀ  <itemize> ½ÉÂê - HOWTO - <itemize> <item>¥Õ¥©¥ï¡¼¥À¤Î¾Ï¤ËIPMASQADM¤Î¥¹¥¯¥ê¥×¥È¤Î¼ÂÎã¤ò²Ã¤¨¤ë¤³¤È¡£ ¹¹¤Ë¡¢¹½Ê¸¤ò³ÎÇ§¤¹¤ë¤³¤È¡£ <item>MASQ¥µ¡¼¥Ð¡¼¤Î¸å¤í¤ËÊ£¿ô¤Î¥µ¥Ö¥Í¥Ã¥È¤¬¤¢¤ë¾ì¹ç¤Ë´Ø¤¹¤ë¾®¤µ¤Ê ¾Ï¤ò²Ã¤¨¤ë¤³¤È¡£ <item>IPCHAINS ¥ë¡¼¥ë¥»¥Ã¥È¤ò³ÎÇ§¤·¡¢¤½¤ì¤¬ IPFWADM ¥ë¡¼¥ë¥»¥Ã¥È¤È À°¹ç¤¬¼è¤ì¤Æ¤¤¤ë¤³¤È¤ò³Î¤«¤á¤ë¤³¤È¡£ </itemize> ½ÉÂê - WWW ¥Ú¡¼¥¸ - <itemize> <item>PPTP ¤Î url ¤ò¤¹¤Ù¤Æ lowrent ¤«¤é ftp://ftp.rubyriver.com/pub/jhardin/masquerade/ip_masq_vpn.html ¤Ø¹¹¿·¤¹¤ë¤³¤È¡£ <item>masq ¥µ¥¤¥È¤Î PPTP ¥Ñ¥Ã¥Á¤ò¹¹¿·¤¹¤ë¤³¤È¡£ <item>portfw FTP ¥Ñ¥Ã¥Á¤ò¹¹¿·¤¹¤ë¤³¤È¡£ </itemize> 1.90 ¤«¤é 1.95 ¤Þ¤Ç¤ÎÊÑ¹¹ - 11/11/00 <itemize> <item>MASQ ¤µ¤ì¤¿Ê£¿ô¤Î¥¤¡¼¥µ¥Í¥Ã¥È¥»¥°¥á¥ó¥È¤ÎÃæ¤Ç°ì¤Ä¤Î NIC ¤ò²ÔÆ¯¤µ¤»¤ë ¤³¤È¤Ï¹¥¤Þ¤·¤¯¤Ê¤¤¤³¤È¤Ë´Ø¤¹¤ëÃ»¤¤Ãí°Õ½ñ¤¤È¡¢¿®Íê¤Ç¤¤ë FAQ ¤Ø¥ê¥ó¥¯ ¤òÄ¥¤ê¤Þ¤·¤¿¡£ ¤³¤Î HOWTO ¤ò¤è¤êÌÀ³Î¤Ë¤·¤Æ¤¯¤ì¤¿ Daniel Chudnov ¤Ë´¶¼Õ¤·¤Þ¤¹¡£  <item>MASQ ¤¬ NAT ¤ä¥×¥í¥¥·¤Î¥µ¡¼¥Ó¥¹¤È¤Ï¤É¤¦°ã¤¦¤Î¤«¤òÃµ¤·¤Æ¤¤¤ë ¥æ¡¼¥¶¤Î¤¿¤á¤Ë¡¢ FAQ ¤Î¾Ï¤ËÆ³ÆþÉô¤Î¾Ï¤ÎÃæ¤Ø¤Î¥Ý¥¤¥ó¥¿¤ò²Ã¤¨¤Þ¤·¤¿¡£ <item>2.2.x, 2.4.x, 2.0.x ¥«¡¼¥Í¥ë¤Î¡¢³Æ¡¹¤Î¾Ï¤ÎÉ¬Í×¾ò·ï¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>3¾Ï¤Ç¡¢¥«¡¼¥Í¥ë¤¬´û¤Ë MASQ ¤ò¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤ë¤«ÈÝ¤«¤ò¸¡¾Ú¤¹¤ë ÊýË¡¤ò³ÈÄ¥¤·¤Þ¤·¤¿¡£ <item>(2.2.x µÚ¤Ó 2.0.x) ¤Î¡¢Ã±½ã¤Ê MASQ ¥ë¡¼¥ë¥»¥Ã¥È¤ÎÎã¤Î½çÈÖ¤ò È¿Å¾¤µ¤»¤Þ¤·¤¿¡£ <item>2.0.x ¤È 2.2.x ¤Î rc.firewall ¥Õ¥¡¥¤¥ë¤Ë¤¢¤ë´ö¤Ä¤«¤Î½ñ¼°¤Î ÌäÂê¤òÊÒÉÕ¤±¤Þ¤·¤¿¡£ <item>2.2.x ¤Î rc.firewall ¤Ë´Ø¤·¡¢´ö¤Ä¤«¤Î¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó (Debian, TurboLinux, Åù)¤Ë¤ª¤¤¤Æ¡¢¥Ç¥Õ¥é¥°¥ª¥×¥·¥ç¥ó¤¬¤Ê¤¯¤Ê¤Ã¤Æ¤¤¤ë ¤³¤È¤Ë´Ø¤¹¤ëÃí°Õ½ñ¤¤ò²Ã¤¨¤Þ¤·¤¿¡£ <item>Pump ¤Î»È¤¤Êý¤ò´Þ¤à rc.firewall ¥¹¥¯¥ê¥×¥È¤Ë 3ÈÖÌÜ¤ÎÃí°Õ½ñ¤¤ò ÄÉ²Ã¤·¤Þ¤·¤¿¡£ Ross Johnson ¤Ë´¶¼Õ¤·¤Þ¤¹¡£ <item>2.2.x µÚ¤Ó 2.2.x ¥«¡¼¥Í¥ë¤ÎÎ¾Êý¤Ç¡¢Ã±½ã¤Ê MASQ ¥ë¡¼¥ë¥»¥Ã¥È¤ÎÎã¤òÊÒÉÕ¤±¤Þ¤·¤¿¡£ <item>¤¤¤¯¤Ä¤«¤ÎÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Î¥È¥é¥Õ¥£¥Ã¥¯ MASQ ¤Ë´Ø·¸¤¹¤ëÌäÂê¤ò²óÈò¤¹¤ë¤¿¤á¤Ë¡¢³°Éô¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹Ì¾(IPCHAINS¤Ï -i ¤Ç¤¹; IPFWADM¤Ï -W ¤Ç¤¹¡£)¤ò´Þ¤à¤¿¤á¤Ë¡¢Ã±½ã¤Ç¤è¤ê¶¯¤¤ IPCHAINS µÚ¤Ó IPFWADM ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ò¹¹¿·¤·¤Þ¤·¤¿¡£  <item>»î¸³¥³¥Þ¥ó¥É¤¬ËÜÍè¤Î½ÐÎÏ¤Ë¤Ê¤ë¤è¤¦¤Ê¡¢´°Á´¤Ê¼ÂÎã¤òÄÉ²Ã¤·¤¿ »î¸³¥¹¥Æ¥Ã¥×¤òÈ¼¤Ã¤Æ¡¢5¾Ï(»î¸³)¤òÂçÉý¤Ë³ÈÄ¥¤·¤Þ¤·¤¿¡£ <item>H.323 ¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤òÌ¤¥µ¥Ý¡¼¥È¤«¤é¥µ¥Ý¡¼¥ÈºÑ¤ß¤Ø°ÜÆ°¤·¤Þ¤·¤¿¡£:) <item>Ê£¿ô¤Î LAN ¤Î¾Ï¤ÎÎã (2.2.x¡¢¤½¤Î¸å 2.0.x) ¤òºÆ¤ÓÀ°Íý¤·¤Þ¤·¤¿¡£ <item>Ê£¿ô¤Î LAN ¤ÎÎã¤ËÀâÌÀ¤ò´ö¤Ä¤«ÄÉ²Ã¤·¤Þ¤·¤¿¡£ ¥Í¥Ã¥È¥ï¡¼¥¯¤ÎÎã¤Ç¡¢Ê£¿ô¤Î NIC ¤Ë¤è¤ë¥Þ¥¹¥«¥ì¡¼¥Ç¥£¥ó¥°¤Ë¤ª¤¤¤Æ¡¢ ¥Í¥Ã¥È¥ï¡¼¥¯¤Î»ØÄê¤¬µÕ¤Ë¤Ê¤Ã¤Æ¤¤¤¿¤È¤¤¤¦½ÅÂç¤Ê¸í¿¢¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ Matt Goheen ¤Ë´¶¼Õ¤·¤Þ¤¹¡£ <item>PORTFW ¤Î¾Ï¤ÎÃæ¤Î MFW ¤Ë´Ø¤·¡¢´ÊÃ±¤Ê¾Ò²ð¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>PORTFW ¤Î¤¿¤á¤Î 2.0.x ¤È 2.2.x ¤Î¾Ï¤Î½çÈÖ¤òµÕ¤Ë¤·¤Þ¤·¤¿¡£ <item>2.2.x ¥«¡¼¥Í¥ë¤Î FTP ¥È¥é¥Õ¥£¥Ã¥¯¤Î¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Ë´Ø¤·¡¢ºÇ¿·¾ðÊó¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <code> Ãí - ¸½»þÅÀ¤Ç¡¢ 2.2.x ¥«¡¼¥Í¥ë¤Ë¤ª¤±¤ë¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥° FTP ÀÜÂ³¤Î IP_MASQ_FTP ¥â¥¸¥å¡¼¥ë¤Ï¥Ù¡¼¥¿¥ì¥Ù¥ë¤Ç¤¹¡£ ¤³¤ì¤Ï¥¢¥ó¥í¡¼¥É¤¹¤ëÉ¬Í×¤Ê¤¯¡¢Æ°ºîÃæ¤Ë FTP ¥Ý¡¼¥È¤Î¥Ý¡¼¥È¥Õ¥©¥ï¡¼ ¥Ç¥£¥ó¥°¤òÄÉ²Ã¤¹¤ëµ¡Ç½¤¬¥µ¥Ý¡¼¥È¤µ¤ì¤Æ¤¤¤Þ¤¹¡£ ¤è¤Ã¤Æ¡¢ IP_MASQ_FTP ¥â¥¸¥å¡¼¥ë¤ò¥ê¥í¡¼¥É¤¹¤ë¤È´ûÂ¸¤Î FTP ÀÜÂ³¤Ï Á´¤ÆÇË²õ¤µ¤ì¤Þ¤¹¡£ </code> <item>FTP ¤Î¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥° (PORTFW) ¤Î¥µ¥Ý¡¼¥È¤Ë´Ø¤·¡¢¥È¥Ã¥× ¥ì¥Ù¥ë¤ÎÃí¼á¤ò²Ã¤¨¤Þ¤·¤¿¡£ <item>¥«¡¼¥Í¥ë 2.0.x ¤Î ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤µ¤ì¤¿ FTP ¤ÎÎã¤Ç¡¢²¿¸Î ¥æ¡¼¥¶¤Ï¥Ý¡¼¥È20ÈÖ¤ò¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤¹¤ëÉ¬Í×¤¬¤Ê¤¤¤Î¤«¤È¤¤¤¦ ¤³¤È¤Ë´Ø¤¹¤ëÃí°Õ½ñ¤¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Î¾Ï¤Ë¡¢¥æ¡¼¥¶¤Ï¡¢Îã¤¨¤Ð SuSe ¤«¤éÆþ¼ê ¤Ç¤¤ë¤è¤¦¤Ê¡¢¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤µ¤ì¤¿ FTP ¤Î¤è¤¦¤Êµ¡Ç½¤ò¥µ¥Ý¡¼¥È ¤¹¤ë¤¿¤á¤Î FTP ¥×¥í¥¥·¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤¬»È¤¨¤ë¤³¤È¤Ë´Ø¤¹¤ë¸ÀµÚ¤òÄÉ²Ã ¤·¡¢¹¹¿·¤·¤Þ¤·¤¿¡£ Stephen Graham ¤Ë´¶¼Õ¤·¤Þ¤¹¡£ <item>Ê£¿ô¤ÎÆâÉô FTP ¥µ¡¼¥Ð¤ËÀÜÂ³¤¹¤ë¤¿¤á¤ËÊ£¿ô¤Î¥Ý¡¼¥È¤ò»ÈÍÑ¤¹¤ë¥æ¡¼¥¶ ¤¬ ip_masq_ftp ¥â¥¸¥å¡¼¥ë¤ò¥í¡¼¥É¤¹¤ëÊýË¡¤Î°Ù¤ÎÉ¬Í×¤ÊÀßÄê¤ò´Þ¤à¡¢FTP ¤Î ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤òÍ¸ú¤Ë¤¹¤ëÊýË¡¤ÎÎã¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ ¤³¤ì¤Ë´Ø¤·¤Æ»×¤¤½Ð¤µ¤»¤Æ¤¯¤ì¤¿ Bob Britton ¤Ë´¶¼Õ¤·¤Þ¤¹¡£ <item>rc.firewall ¥Õ¥¡¥¤¥ë¤Ë ^M ¤¬Ê¶¤ì¹þ¤ó¤À¥æ¡¼¥¶¤Î°Ù¤Î FAQ ¹àÌÜ¤ò ÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>´ö¤Ä¤«¤ÎÍ±×¤Ê URL ¤ò´Þ¤à¡¢ MASQ ¤È NAT ¤ä¥×¥í¥¥·¤È¤ÎÁê°ãÅÀ¤Ë ´Ø¤¹¤ë FAQ ¹àÌÜ¤ò³ÈÄ¥¤·¤Þ¤·¤¿¡£ <item>MASQ MTU ÌäÂê¤ÎÀâÌÀ¤ò¹¹¿·¤·¡¢ÌäÂê¤Î¼çÍ×¤Ê2¤Ä¤ÎÀâÌÀ¤Ë¤Ä¤¤¤Æµ½Ò ¤·¤Þ¤·¤¿¡£  <item>¤¤¤¯¤Ä¤«¤Î ISP ¤Ï 1460 MTU ¤Î¥»¥Ã¥Æ¥£¥ó¥°¤òÍ×µá¤·¤Þ¤¹¤¬¡¢ PPPoE ¤Ï 1490 ¤Î MTU ¤òÃ±¤ËÍ×µá¤¹¤ë¤Ù¤¤Ç¤¹¤Î¤Ç¡¢ RFC ¤Ë½¾¤Ã¤Æ¤³¤ì¤òÌÀ³Î¤Ë ¤·¤Þ¤·¤¿¡£ ¤³¤Î¤¿¤á¡¢»ä¤Ï 1490 ¤Î MTU ¤ò¼¨¤¹¤¿¤á¤ËÎã¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>Win95 ¤È Win98 ¤Ï°Û¤Ê¤ëÀßÄê (DWORD ÂÐ STRING) ¤ò»ÈÍÑ¤¹¤ë¤Î¤Ç¡¢ Windows 9x ¤Î¾Ï¤òÇË´þ¤·¤Þ¤·¤¿¡£ ¤³¤ì¤È¶¦¤Ë¤³¤Î¾Ï¤ò¤è¤êÌÀ³Î¤Ë¤¹¤ë°Ù¤Ë¹¹¿·¤·¡¢¥ì¥¸¥¹¥È¥ê¤Î¥Ð¥Ã¥¯¥¢¥Ã¥× ÊýË¡¤¬¹¹¿·¤µ¤ì¤Þ¤·¤¿¡£ <item>NT 4.0 ¤Î¥ì¥¸¥¹¥È¥ê¥¨¥ó¥È¥ê¤¬¸å¤í¤Ë¤¢¤Ã¤¿ (Tcpip/¥Ñ¥é¥á¡¼¥¿ ÂÐ ¥Ñ¥é¥á¡¼¥¿/Tcpip) ¸í¿¢¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ <item>WinNT ¥¨¥ó¥È¥ê¤Ï DWORD ¤Ç¤¢¤ê STRING ¤Ç¤Ï¤Ê¤¤ÌäÂê¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ <item>ÍÍ¡¹¤Ê PPPoE µÚ¤ÓÍÍ¡¹¤Ê Windows ¥ì¥¸¥¹¥È¥ê¥¨¥ó¥È¥ê¤Î½¤Àµ¤Ë´Ø¤·¡¢ Geoff Mottram ¤Ë¿¼¤¯´¶¼Õ¤·¤Þ¤¹¡£ <item>IRC FAQ¥¨¥ó¥È¥ê¡¼¤Ë Oident ¤Î URL ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£  <item>´ö¤Ä¤«¤Î²õ¤ì¤¿ "netstat" ¤Î¥Ð¡¼¥¸¥ç¥ó¤Ë´Ø¤¹¤ë FAQ ¤Î¾Ï¤ò¹¹¿· ¤·¤Þ¤·¤¿¡£ <item>MASQ ¥¢¥«¥¦¥ó¥Æ¥£¥ó¥°¤Î¥¢¥¤¥Ç¥£¥¢¤È¥È¥é¥Õ¥£¥Ã¥¯¥·¥§¡¼¥Ô¥ó¥°¤Ë ´Ø¤¹¤ë¿·¤¿¤Ê FAQ ¤Î¾Ï¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>¥Ý¥ê¥·¡¼¥ë¡¼¥Æ¥£¥ó¥°¤Ï²¿¤«¤Ë´Ø¤¹¤ë¡¢ IPROUTE2 ¤Î FAQ ¹àÌÜ¤ò ³ÈÄ¥¤·¤Þ¤·¤¿¡£ <item>2.2.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï¤Î¾Ï¤Ë IPROUTE2 ¤Î URL ¤ò°ÜÆ°¤·¡¢¹¹¤Ë Æ±ÍÍ¤Î URL ¤ò´ö¤Ä¤«ÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>»Ä¤ê¤ÎÎã¤ÈÌ·½â¤Î¤Ê¤¤ 192.168.0.0 ¥Í¥Ã¥È¥ï¡¼¥¯¤ËÈ¿±Ç¤µ¤»¤ë°Ù¤Î¡¢ ¤è¤ê¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Î "intnet" ÊÑ¿ô¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ Ross Johnson ¤Ë´¶¼Õ¤·¤Þ¤¹¡£ <item>Ê£¿ô¤ÎÆâÉô MASQ ¤µ¤ì¤¿ LAN Æ±»Î¤Î¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤ÎÌäÂê¤ò¼ÁÌä¤¹¤ë ¿Í¡¹¤Î°Ù¤Ë¡¢¿·¤¿¤Ê FAQ ¤Î¾Ï¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>Ê£¿ô¤Î³°Éô IP ¥¢¥É¥ì¥¹¤«¤éÃ±°ì¤ÎÆâÉô IP ¥¢¥É¥ì¥¹¤ØÁ´¤Æ¤Î¥Ý¡¼¥È ¤ò¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤·¤¿¤¤¥æ¡¼¥¶¤Ë´Ø¤¹¤ë¡¢¿·¤¿¤Ê FAQ ¤Î¾Ï¤òÄÉ²Ã ¤·¤Þ¤·¤¿¡£ ¹¹¤Ë¡¢Ê£¿ô¤Î IP ¥¨¥¤¥ê¥¢¥¹¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¾å¤ÎÁ´¤Æ¤Î¥Ý¡¼¥È¤Î¥Ý¡¼¥È ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤ò»î¤ß¤ë¿Í¤Ë¸ÀµÚ¤·¤Þ¤·¤¿¡£ ¤Þ¤¿¡¢ ¥ë¡¼¥Æ¥£¥ó¥°¤µ¤ì¤Ê¤¤´Ä¶²¼¤ÇÊ£¿ô¤Î IP ¤ò½ê»ý¤¹¤ë DSL µÚ¤Ó ¥±¡¼¥Ö¥ë¥â¥Ç¥à¥æ¡¼¥¶¤Î°Ù¤Î¡¢ Bridge+Firewall HOWTO ¤Ë¸ÀµÚ¤·¤Þ¤·¤¿¡£ <item>¥µ¥Ý¡¼¥ÈºÑ¤ß¥ê¥¹¥È¤Ë Mandrake 7.2 ¤È Slackware 7.1 ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>MASQ ¥µ¥Ý¡¼¥ÈºÑ¤ß¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ë RedHat 7.0 ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ Eugene Goldstein ¤Ë´¶¼Õ¤·¤Þ¤¹¡£ <item>FAQ ¤Î¾Ï¤Î "ºÇÂç¥¹¥ë¡¼¥×¥Ã¥È" ¤Î·×»»¤Î´Ö°ã¤¤¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ Joe White @ ip255@msn.com ¤Ë´¶¼Õ¤·¤Þ¤¹¡£ <item>Windowx9x ¤Î MTU ¤ÎÊÑ¹¹¤Ï STRING ¤ÎÊÑ¹¹¤Ç¤¢¤ê¡¢ DWORD ¤ÎÊÑ¹¹ ¤Ç¤Ï¤Ê¤¤»ö¼Â¤Ë´ð¤Å¤¤¤Æ½¤Àµ¤·¤Þ¤·¤¿¡£ jmoore@sober.com ¤Ë´¶¼Õ¤·¤Þ¤¹¡£ <item>ip_defrag ¥ª¥×¥·¥ç¥ó¤Ï 2.0 µÚ¤Ó 2.2 ¥«¡¼¥Í¥ë¤ÎÎ¾Êý¤Ë¤¢¤ë¤³¤È¤Ë ´Ø¤¹¤ë¡¢ rc.firewall ¥¹¥¯¥ê¥×¥È¤ÎÃí¼á¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ ¤³¤Î¤³¤È¤òÌÀ¼¨¤·¤Æ¤¯¤ì¤¿ pumilia@est.it ¤Ë´¶¼Õ¤·¤Þ¤¹¡£ </itemize> 1.85 ¤«¤é 1.90 ¤Þ¤Ç¤ÎÊÑ¹¹ - 07/03/00 <itemize> <item>¤½¤Î¿·¤·¤¤¥ì¥¤¥¢¥¦¥È¤òÈ¿±Ç¤¹¤ë¤¿¤á¤Ë¡¢ TrinityOS ¤Î URL¤ò¹¹¿· ¤·¤Þ¤·¤¿¡£ <item>IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥ÈÆâ¤Ë "ip_always_defrag" ¤È½ñ¤«¤º¤Ë "ip_ip_always_defrag" ¤È½ñ¤¤¤Æ¤·¤Þ¤Ã¤Æ¤¤¤¿¸í¿¢¤ò¸«¤Ä¤±¤Þ¤·¤¿¡£ <item>Taro Fukunaga »á¤Ø¤Î URL ¤ò "mailto:" ¤ò»ÈÍÑ¤»¤º¤Ë "mail:" ¤Ë¤·¤Æ¤·¤Þ¤Ã¤Æ¤¤¤Þ¤·¤¿¡£ <item>²¿¸Î eth0 ¤¬Ê£¿ô²ó»²¾È¤µ¤ì¤ë¤Î¤«¤òÍý²ò¤·¤Æ¤¯¤ì¤Ê¤«¤Ã¤¿¿ÍÃ£¤Î°Ù¤Ë¡¢ "Ê£¿ô¤ÎÆâÉô¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤ò¥Þ¥¹¥«¥ì¡¼¥É¤¹¤ë" ·ï¤Ë´ö¤Ä¤«ÀâÌÀ¤ò²Ã¤¨¤Þ¤·¤¿¡£ <item>¤è¤ê¶¯¤¤ IPCHAINS ¤Î¾Ï¤ÎÃæ¤Ç¡¢¤â¤¦°ì¤Ä¤Î¡ÖEXTIP ÊÑ¿ô¤Î¸å¤Î¥¹¥Ú¡¼¥¹¡× ¤Î¥Ð¥°¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ »ä¤Ï¡¢ 1¤Ä¤òÆ¨¤·¤¿¤È¿äÂ¬¤·¤Þ¤¹¡£ <item>5¾Ï¤Î¥Æ¥¹¥È #7 ¤Ë¤Æ¡¢¥¹¥Æ¥Ã¥× #4 ¤ËÌá¤ë¤è¤¦¤Ë¥æ¡¼¥¶¤ËÍ¶Æ³¤·¤Þ¤·¤¿¡£ ¤½¤ì¤Ï¥¹¥Æ¥Ã¥× #6 ¤Ç¤¢¤ë¤Ù¤¤Ç¤·¤¿¡£ <item>SuSe 5.2 µÚ¤Ó 6.0 ¤ËÉÕÂ°¤¹¤ë¥«¡¼¥Í¥ë¤Î¥Ð¡¼¥¸¥ç¥ó¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>7.2¾Ï¤Î¸í¿¢ (or ÂÐ of) ¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ <item>¥Þ¥¹¥«¥ì¡¼¥É¤ÎÌäÂê¤òÌ¤¤À¤ËÊú¤¨¤Æ¤¤¤ë¥æ¡¼¥¶¤Ë¡¢ FAQ Æâ¤Ë MTU ¤Î¹àÌÜ¤òÆÉ¤Þ¤»¤ë°Ù¤Ë¡¢¥Þ¥¹¥«¥ì¡¼¥É¤Î¥Æ¥¹¥È¤Î¾Ï¤Ë¥¢¥¤¥Æ¥à #9 ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£  <item>5¾Ï¤Î²Õ¾ò½ñ¤¤ò²þÁ±¤·¤Þ¤·¤¿¡£ <item>MASQ/FORWARD ¥Æ¡¼¥Ö¥ë¤ò¼¨¤¹¤¿¤á¤Ë IPCHAINS ¤Î¹½Ê¸¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ °ÊÁ°¤Ï "ipchains -F -L" ¤ÇÀµ¾ï¤ËÆ°ºî¤·¤Þ¤·¤¿¤¬¡¢¸½ºß¤Ï "ipchains -M -L" ¤Ç¤·¤«Æ°ºî¤·¤Þ¤»¤ó¡£ <item>2.2.16 °Ê¹ß¤Î¥«¡¼¥Í¥ë¤Ë¤ª¤±¤ë¿·¤¿¤Ê LooseUDP ¤Î¿¶¤ëÉñ¤¤¤òÈ¿±Ç¤¹¤ë¤¿¤á¤Ë¡¢ LooseUDP ¤ÎÊ¸½ñ¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ °ÊÁ°¤Ï¾ï¤ËÍ¸ú¤Ç¤·¤¿¤¬¡¢¸½ºß¤Ï¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ UDP ¥Ý¡¼¥È¥¹¥¥ã¥Ë¥ó¥°¤ÎÀÈ¼åÀ¤«¤é¡¢¥Ç¥Õ¥©¥ë¥È¤Ç¥ª¥Õ¤È¤Ê¤Ã¤Æ¤¤¤Þ¤¹¡£ ÄÌ¾ï¤Î¡¢µÚ¤Ó¤ä¤ä¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Ë¤³¤Î¥ª¥×¥·¥ç¥ó¤òÈ¿±Ç¤¹¤Ù¤¯¹¹¿·¤·¤Þ¤·¤¿¡£ <item>¸Å¤¤¥Ð¡¼¥¸¥ç¥ó¤Î¥«¡¼¥Í¥ë¤Ï TCP ¥ë¡¼¥È¸¢¸Âºñ¼è¤ÎÀÈ¼åÀ¤¬¤¢¤ë¤Î¤Ç¡¢ 2.2.x ¥«¡¼¥Í¥ë¤Ï¥Ð¡¼¥¸¥ç¥ó 2.2.16 °Ê¹ß¤Ë¤¹¤Ù¤¤Ç¤¢¤ë»Ý¤ò²Ã¤¨¤Þ¤·¤¿¡£ <item>MASQ ¥µ¥Ý¡¼¥ÈºÑ¤ß¥ê¥¹¥È¤Ë RedHat 6.2 ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>Sonny Parlin ¤Î FWCONFIG ¤Ø¤Î¥ê¥ó¥¯¤ò¸½ºß¤Î fBuilder ¤Ø¤Î¤â¤Î¤Ë¹¹¿·¤·¤Þ¤·¤¿¡£ <item>ÍÍ¡¹¤ÊÎã¤Ë¤ª¤±¤ë IP ¥¢¥É¥ì¥¹¤òÍ¸ú¤Ê¤â¤Î¤Ë¤¹¤Ù¤¯¡¢ 111.222.333.444 ¤ò 111.222.121.212 ¤Ø¹¹¿·¤·¤Þ¤·¤¿¡£ <item>¥Ù¡¼¥¿ÈÇ H.323 MASQ¥â¥¸¥å¡¼¥ë¤Î URL ¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>¤è¤¦¤ä¤¯¡¢ PPPoE DSL µÚ¤Ó¥±¡¼¥Ö¥ë¡¦¥â¥Ç¥à¡¦¥æ¡¼¥¶¤ò»Ù±ç¤¹¤ë¤¿¤á¤Ë MTU FAQ ¤Î¾Ï¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ ´ðËÜÅª¤Ë <ref id="MTU-issues" name="MTU ÌäÂê"> ¤Î¾Ï¤Ï¡¢¸½ºß¡¢¥æ¡¼¥¶¤Ï¶²¤ì¤é¤ì¤¿ MASQ MTU ÌäÂê¤ò²ò·è¤¹¤ë¤¿¤á¤Ë¡¢Á´¤Æ¤ÎÆâÉô¥Þ¥·¥ó¤Î MTU ÀßÄê¤òÊÑ¹¹¤¹¤ë¤³¤È¤â¤Ç¤¤ë¤³¤È¤òÈ¿±Ç¤·¤Æ¤¤¤Þ¤¹¡£ <item>PORTFW ¤Î¾Ï¤Ë¡¢³°Éô¥¯¥é¥¤¥¢¥ó¥È¤ËÆ°ºî¤¹¤ë¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥É¤µ¤ì¤¿ÀÜÂ³¤Ï¡¢ÆâÉô¥¯¥é¥¤¥¢¥ó¥È¤Ë¤ÏÆ°ºî¤·¤Ê¤¤¤³¤È¤Î²òÌÀ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ ÆâÉô¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤âÉ¬Í×¤Ê¤é¡¢ REDIR ¥Ä¡¼¥ë¤Î¼ÂÁõ¤âÆ±ÍÍ¤ËÉ¬Í×¤Ç¤¹¡£ ¤³¤ÎÌäÂê¤Ï 2.4.x ¥«¡¼¥Í¥ë¤È Netfilter ¤Ë¤Æ²ò·è¤µ¤ì¤ë¤³¤È¤âµ¤·¤Æ¤ª¤¤Þ¤·¤¿¡£  <item>¹¹¤Ë¡¢²¿¸Î¤³¤Î¥·¥Ê¥ê¥ª¤¬Å¬ÀÚ¤ËÆ°ºî¤·¤Ê¤¤¤Î¤«¡¢¤È¤¤¤¦¤³¤È¤Ë´Ø¤·¡¢ Juanjo ¤«¤é¤Îµ»½ÑÅª¤ÊÀâÌÀ¤ò PORTFW ¤Î¾Ï¤ÎºÇ¸å¤ÎÊý¤Ë²Ã¤¨¤Þ¤·¤¿¡£  <item>IPCHAINS ¤Î URL ¤ÎÁ´¤Æ¤ò Paul Rusty ¤Î ¿·¤·¤¤¥µ¥¤¥È http://netfilter.filewatcher.org/ipchains/ ¤Ø¹¹¿·¤·¤Þ¤·¤¿¡£ <item>Paul Rusty ¤Î ¥á¡¼¥ë¥¢¥É¥ì¥¹¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>FAQ ¤Î¾Ï¤Ë¡¢ÀÜÂ³¤¬Ä¹¤¤´Ö»È¤ï¤ì¤Æ¤¤¤Ê¤¤¤Þ¤Þ¤À¤È¡¢¤â¤Ï¤ä¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥ÉÀÜÂ³¤ÏÆ°ºî¤·¤Ê¤¤¤³¤È¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>LDP ¤Î URL ¤ÎÁ´¤Æ¤òmetalab.unc.edu ¤«¤é¿·¤·¤¤¥µ¥¤¥È¤Ç¤¢¤ë linuxdoc.org ¤Ø¹¹¿·¤·¤Þ¤·¤¿¡£ <item>Updated the Netfilter URLs to point to renamed HOWTOs, etc. ¥ê¥Í¡¼¥à¤µ¤ì¤¿ HOWTO Åù¤Ë¹ç¤ï¤»¤Æ Netfilter ¤Î URL ¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>2.4.x ¥«¡¼¥Í¥ë¤Î¥µ¥Ý¡¼¥È¤Ë´Ø¤·¡¢»þ´ü¤¬Íè¤¿¤é Netfilter ¤ò¥Õ¥ë¥µ¥Ý¡¼¥È¤·¡¢¤Þ¤¿¤½¤Î¸å¤ÏÊÌ¤Î HOWTO ¤ËÀÚ¤êÎ¥¤¹¤Ä¤â¤ê¤Ç¤¢¤ë¤³¤È¤òµ¤·¤Þ¤·¤¿¡£ <item>2.4.x ¥«¡¼¥Í¥ë¤ÎÉ¬Í×¾ò·ï¤Î¾Ï¤Ç¡¢ Netfiler ¤Ï IPFWADM ¤ä IPCHAINS ¤ÈÈæ³Ó¤·¤Æ¤É¤Î¤è¤¦¤ËÊÑ¤ï¤Ã¤¿¤«¤òÈ¿±Ç¤µ¤»¡¢ÍøÅÀ/·çÅÀ¤Î°ìÍ÷¤Ë¿·µ¡Ç½¤ÈµìÍè¤ÎÆ°ºî¤Ø¤ÎÊÑ¹¹¤ò²Ã¤¨¤Þ¤·¤¿¡£ <item> "»ä¤Î¥Þ¥¹¥«¥ì¡¼¥ÉÀÜÂ³¤¬ÃÙ¤¤" ¤È¤¤¤¦ FAQ ¹àÌÜ¤Ë¡¢¥æ¡¼¥¶¤¬¥Ñ¥Õ¥©¡¼¥Þ¥ó¥¹¤ò¸ÌÀ¤Ë¸«¹þ¤àºÝ¤ÎÎÉ¤¤ÀâÌÀ¤Î°Ù¤Ë¡¢ TCP/IP ¤Î¿ôÃÍ¤ÎÎã¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£  <item>"pump" DHCP ¥¯¥é¥¤¥¢¥ó¥È¤Î¿·¤·¤¤¥Ð¡¼¥¸¥ç¥ó¤Ï¡¢µ¯Æ° (bringup) ¡¢¡ÚÌõÃí: IP ¥¢¥É¥ì¥¹¤Î¡Û¥ê¡¼¥¹¹¹¿·Åù¤Î¥¹¥¯¥ê¥×¥È¾å¤ÇÆ°ºî¤Ç¤¤ë¤³¤È¤òÈ¿±Ç¤¹¤Ù¤¯¡¢ HOWTO ¤ò¹¹¿·¤·¤Þ¤·¤¿¡£  <item>²¿¿Í¤«¤Î¥æ¡¼¥¶¤¬ ip_masq_ftp ¥â¥¸¥å¡¼¥ë¤ò»È¤ï¤º¤ËÆâÉô¥Þ¥·¥ó¤Ø¤Î FTP ¥È¥é¥Õ¥£¥Ã¥¯¤ÎÅ¾Á÷¤ËÀ®¸ù¤·¤¿¤È¸À¤Ã¤Æ¤¤¤ë¤³¤È¤òÈ¿±Ç¤µ¤»¤ë¤Ù¤¯¡¢ FTP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Î¹àÌÜ¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ »ä¤Ï¡¢¥æ¡¼¥¶¤ÏÀè¤º½¤Àµ¤µ¤ì¤¿¥â¥¸¥å¡¼¥ëÌµ¤·¤Ç»î¤ß¤Æ¤«¤é¡¢¼¡¤ËÍ×µá¤µ¤ì¤ì¤Ð¥Ñ¥Ã¥Á¤òÅ¬ÍÑ¤¹¤ë¤Ù¤¤Ç¤¢¤ë¤È¡¢ HOWTO ¤ËÈ¿±Ç¤µ¤»¤Þ¤·¤¿¡£  </itemize> 1.82 ¤«¤é 1.85 ¤Þ¤Ç¤ÎÊÑ¹¹ - 05/29/00 <itemize> <item>David Ranch ¤¬ 1Ç¯°Ê¾å HOWTO ¤Î¼çÍ×¤Ê¥á¥ó¥Æ¥Ê¤Ç¤¢¤ë¤È¶¦¤Ë¡¢ Ambrose Au ¤ÎÌ¾Á°¤¬¥¿¥¤¥È¥ë¥Ú¡¼¥¸¤«¤éºï½ü¤µ¤ì¤Þ¤·¤¿¡£ ¤·¤«¤·¤Ê¤¬¤é¡¢ Ambrose ¤Ï WWW ¥µ¥¤¥È¾å¤ÇÌ¤¤À´Þ¤Þ¤ì¤ë¤Ç¤·¤ç¤¦¡£ <item>6.4 ¾Ï¤Î¸í¤Ã¤Æº®Æþ¤·¤¿¥¹¥Ú¡¼¥¹¤òºï½ü¤·¤Þ¤·¤¿¡£  <item>¥Þ¥¹¥«¥ì¡¼¥É¸ß´¹ OS ¤Î¾Ï¤òºÆ¹½À®¤·¡¢ OS/400 ¥·¥¹¥Æ¥à¤¬²ÔÆ¯¤¹¤ë AS/400 ¤ÎÀßÄêÊýË¡¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ jaco@libero.it ¤Ë´¶¼Õ¤·¤Þ¤¹¡£ <item>HTTP ¥¢¥¯¥»¥¹¤¬¼ºÇÔ¤¹¤ë¾ì¹ç¤Î¡¢ FTP ¥¢¥¯¥»¥¹ÍÑ¤ÎÉÕ²ÃÅª¤Ê FTP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¥Ñ¥Ã¥Á¤Î URL ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>FAQ Ãæ¤Î Redhat 5.1 µÚ¤Ó 6.1 ¤Î¥«¡¼¥Í¥ë¥Ð¡¼¥¸¥ç¥ó¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>¥Þ¥¹¥«¥ì¡¼¥É²ÄÇ½¤Ê Linux ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Î°ìÍ÷¤Ë FloppyFW ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>¤è¤ê¶¯¤¤ IPFWADM ¤Î¥ë¡¼¥ë¥»¥Ã¥ÈÃæ¤Î "ppp_ip" ¤È "=" ¤Î´Ö¤Ë¥¹¥Ú¡¼¥¹¤¬¤¢¤Ã¤¿¾ì¹ç¤ÎÌäÂê¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ <item>2.2.x ¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë¤Î¾Ï¤Ç¡¢ "CONFIG_IP_ALWAYS_DEFRAG" ¥¹¥¤¥Ã¥Á¤ò¥ª¥ó¤¹¤ë»²¾È¤òºï½ü¤·¤Þ¤·¤¿¡£ ¤³¤Î¥ª¥×¥·¥ç¥ó¤Ï¥³¥ó¥Ñ¥¤¥ë¤Î¾Ï¤«¤éºï½ü¤µ¤ì¡¢2.2.12 ¥«¡¼¥Í¥ë¤Ë¤ª¤¤¤Æ¥Þ¥¹¥«¥ì¡¼¥É¤ò¥ª¥ó¤¹¤ëºÝ¤Î¥Ç¥Õ¥©¥ë¥È¤Ë¤Ê¤ê¤Þ¤·¤¿¡£ <item>¥«¡¼¥Í¥ë¤ÎÆ°ºî¤ÎÊÑ²½¤Ë¤è¤Ã¤Æ¡¢ rc.firewall ¤ÎÁ´¤Æ¤ÎÎã¤Ë ip_always_defrag ¤ò²ÄÇ½¤Ë¤¹¤ë¤³¤È¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>H.323 ¤Î¥µ¥Ý¡¼¥È¾õ¶·¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ ¸½ºß¡¢ 2.0.x µÚ¤Ó 2.2.x ¥«¡¼¥Í¥ë¤ÎÎ¾Êý¤Ç¡¢ H.323 ¤ò¥µ¥Ý¡¼¥È¤¹¤ë¥¢¥ë¥Õ¥¡ÈÇ¥Ð¡¼¥¸¥ç¥ó¤Î¥â¥¸¥å¡¼¥ë¤¬¤¢¤ê¤Þ¤¹¡£ <item>¥Þ¥¹¥«¥ì¡¼¥É¤ò¥µ¥Ý¡¼¥È¤¹¤ë¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Î°ìÍ÷¤Ë Debian v2.2 ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>Ä¹¤¤´ÖÂ¸ºß¤·¤Æ¤¤¤¿¡¢IPCHAINS ÍÑ¤ÎÌÀ¼¨Åª IP ¥¢¥É¥ì¥¹¥Õ¥£¥ë¥¿¥ê¥ó¥°¤Î¾Ï¤Ë¸Å¤¤ IPFWADM ¤ÎÊ¸Ë¡¤¬»Ä¤Ã¤Æ¤¤¤¿ÌäÂê¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ ¹¹¤Ë¤³¤Î¾Ï¤ò¾¯¤·À°Íý¤·¡¢¤â¤¦¾¯¤·Íý²ò¤·¤ä¤¹¤¯¤·¤Þ¤·¤¿¡£  <item>¤¯¤¥! ½ÅÍ×¤Ê MASQ ¤Î¾ðÊó¸»¤Î¾Ï¤Ë Juan Ciarlante ¤Î URL ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ ¤½¤¦.. ·¯Ã£¤Ï¤³¤ÎÊ¸½ñ¤è¤ê¤â¤Ã¤È»ä¤ËÀµÄ¾¤Ë¤Ê¤ëÉ¬Í×¤¬¤¢¤ë¤ó¤À¤è!!  <item>¥«¡¼¥Í¥ë 2.0.38 µÚ¤Ó 2.2.15 ¤òÈ¿±Ç¤¹¤Ù¤¯ HOWTO ¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>2.0.x ¥«¡¼¥Í¥ë¤¬¤«¤Ê¤ê¸Å¤¯¤Ê¤Ã¤Æ¤¤¤ë¤³¤È¤Ë´Õ¤ß¡¢¥«¡¼¥Í¥ë¥³¥ó¥Ñ¥¤¥ë¤Î³«¼¨¤Î½çÈÖ¤ò 2.2.x ¥«¡¼¥Í¥ë¤òÀè¤Ë¤·¤Æ¡¢µÕ½ç¤Ë¤·¤Þ¤·¤¿¡£ <item>ºÇ¿·¤Î 2.2.x ¥«¡¼¥Í¥ë¤ÎÊÑ¹¹¤µ¤ì¤¿¥ª¥×¥·¥ç¥ó¤òÈ¿±Ç¤¹¤Ù¤¯¡¢ 2.2.x ¥«¡¼¥Í¥ë¤Î¥³¥ó¥Ñ¥¤¥ë¤Î¾Ï¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>²áµî¤Î¥Þ¥¹¥«¥ì¡¼¥É¥Æ¥¹¥È¤Î #5 ¤Ë¼ºÇÔ¤¹¤ë¿Í¤Î°Ù¤Ë²ÄÇ½¤Ê²ò·èÊýË¡¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ </itemize> 1.81 ¤«¤é 1.82 ¤Þ¤Ç¤ÎÊÑ¹¹ - 01/22/00 <itemize> <item>6.5 ¾Ï¤Î¤è¤ê¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤ÎÃæ¤Î¡¢ /proc/sys/net/ipv4/ip_dynaddr ¤Ë´Ø¤¹¤ëµºÜËº¤ì¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>IP ¥Þ¥¹¥«¥ì¡¼¥É¥µ¥Ý¡¼¥È¤Î¹àÌÜ¤Ç¡¢ Debian 2.1 ¤ò YES ¤ËÊÑ¹¹¤·¤Þ¤·¤¿¡£ <item>FAQ ¤Î¾Ï¤Î"¥Þ¥¹¥«¥ì¡¼¥É¤¬ÃÙ¤¤"¹àÌÜ¤Ë¡¢¸ÇÄê¥¤¡¼¥µ¥Í¥Ã¥ÈÂ®ÅÙµÚ¤ÓÊ£¹çÌäÂê¤ò´Þ¤á¤ë¤Ù¤¯ºÆ¹½À®¤·¡¢¹¹¿·¤·¤Þ¤·¤¿¡£ <item>Donald Becker ¤Î¥¤¡¼¥µ¥Í¥Ã¥È NIC ¥«¡¼¥ÉÍÑ MII ¥æ¡¼¥Æ¥£¥ê¥Æ¥£¤Î¥ê¥ó¥¯¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>2.2.x ¥«¡¼¥Í¥ë¤Î¾Ï(°ÊÁ°¤Ï¥«¡¼¥Í¥ë¥Ð¡¼¥¸¥ç¥ó 2.0.x ¤ÎÉôÊ¬¤À¤±½¤Àµ¤·¤Æ¤¤¤Þ¤·¤¿)¤Ë¡¢ ICQ ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¥¹¥¯¥ê¥×¥È¤Î ")" ¤ÎµºÜËº¤ì¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ ¤Þ¤¿¡¢ -lt ¤«¤é -le ¤Þ¤Ç¤ÎÉ¾²Á¤òÊÑ¹¹¤·¤Þ¤·¤¿¡£  <item>¥Þ¥¹¥«¥ì¡¼¥É¥µ¥Ý¡¼¥ÈºÑ°ìÍ÷¤Ë Caldera eServer v2.3 ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>¥Þ¥¹¥«¥ì¡¼¥É¥µ¥Ý¡¼¥ÈºÑ°ìÍ÷¤Ë Mandrake 6.0, 6.1, 7.0 ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>¥Þ¥¹¥«¥ì¡¼¥É¥µ¥Ý¡¼¥ÈºÑ°ìÍ÷¤Ë Slackware v7.0 ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>¥Þ¥¹¥«¥ì¡¼¥É¥µ¥Ý¡¼¥ÈºÑ°ìÍ÷¤Ë Redhat 6.1 ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>¥Þ¥¹¥«¥ì¡¼¥É¥µ¥Ý¡¼¥ÈºÑ°ìÍ÷¤Ë TurboLinux 4.0 Lite ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>¥Þ¥¹¥«¥ì¡¼¥É¥µ¥Ý¡¼¥ÈºÑ°ìÍ÷¤Ë SuSe 6.3 ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>°ÂÄêÈÇ 2.2.x ¥«¡¼¥Í¥ë¤Ï 2.2.11 ¤è¤ê¿·¤·¤¤¤â¤Î¤òÁ¦¤á¤ë¤Ù¤¯¹¹¿·¤·¤Þ¤·¤¿¡£ <item>3.3¾Ï¤Ë¤ª¤¤¤Æ¡¢³Æ¡¹¤Î¥ê¥Ö¡¼¥È¾å¤Ç¤É¤Î¤è¤¦¤Ë /etc/rc.d/rc.firewall ¤òÆÉ¤ß¹þ¤à¤Î¤«¤ò¥æ¡¼¥¶¤ËÅÁ¤¨¤ëÊýË¡¤ò¡¢HOWTO ¤ËµºÜ¤¹¤ë¤³¤È¤òËº¤ì¤Æ¤¤¤Þ¤·¤¿¡£ ¤³¤ì¤Ï¸½ºß Redhat (µÚ¤Ó¤½¤ÎÇÉÀ¸¤¹¤ë¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó) µÚ¤Ó Slackware ¤ò¥«¥Ð¡¼¤·¤Þ¤·¤¿¡£ <item>Windows WFWG v3.x µÚ¤Ó NT ¤ÎÀßÄê¤Î¾Ï¤Ë¡¢²¿¸Î¥æ¡¼¥¶¤Ï DHCP, WINS µÚ¤Ó¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Î¥ª¥×¥·¥ç¥ó¤òÀßÄê¤¹¤Ù¤¤Ç¤Ê¤¤¤«¤ÎÌÀ³Î¤ÊÀâÌÀ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>FAQ ¤Î¾Ï¤Ë¡¢¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿¥Þ¥·¥ó¤Ë¤ª¤±¤ë FTP ¤ÎÌäÂê¤Î²ò·èÊýË¡¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>Fixed a typo in the Stronger firewall rulesets. The "extip" variabl cannot have the SPACE between the variable name and the "=" sign. Thanks to johnh@mdscomp.com for the sharp eye. ¤è¤ê¶¯¤¤¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Î¸í¿¢¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ "extip" ÊÑ¿ô¤ÏÊÑ¿ôÌ¾¤È"="¤Î´Ö¤Ë¥¹¥Ú¡¼¥¹¤ò¶´¤à¤³¤È¤Ïµö¤µ¤ì¤Þ¤»¤ó¡£ johnh@mdscomp.com ¤Î±Ô¤¤ÌÜ¤Ë´¶¼Õ¤·¤Þ¤¹¡£ <item>¸ß´¹À¤Î¾Ï¤ò¹¹¿·¤·¤Þ¤·¤¿ - Mandrake 7.0 ¤Ï¥«¡¼¥Í¥ë 2.2.14 ¥Ù¡¼¥¹¤Ç¡¢ TurboLinux v6.0 ¤Ï¥«¡¼¥Í¥ë 2.2.12 ¤¬Æ°ºî¤·¤Þ¤¹¡£ </itemize> 1.80 ¤«¤é 1.81 ¤Þ¤Ç¤ÎÊÑ¹¹ - 01/09/00 <itemize> <item>¿·¤·¤¤ ICQ ¥Þ¥¹¥«¥ì¡¼¥É¥â¥¸¥å¡¼¥ë¤¬¥Õ¥¡¥¤¥ëÅ¾Á÷¤È¥ê¥¢¥ë¥¿¥¤¥à¥Á¥ã¥Ã¥È¤ò¥µ¥Ý¡¼¥È¤¹¤ë¤³¤È¤òÈ¿±Ç¤¹¤Ù¤¯¡¢ ICQ ¤Î¾Ï¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ ¥«¡¼¥Í¥ë 2.0.x ¤Î¥â¥¸¥å¡¼¥ë¤Ï¤Þ¤À¤³¤ì¤é¤ÎÀ©¸Â¤¬¤¢¤ê¤Þ¤¹¡£ <item>Steven E. Grevemeyer ¤Î¥á¡¼¥ë¥¢¥É¥ì¥¹¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ Èà¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¥Ú¡¼¥¸¤Î¥á¥ó¥Æ¥Ê¤Ç¤¹¡£ <item>"setsockopt" ¥¨¥é¡¼ÍÑ¤Ç¤Ê¤¤ºî¶È¤¬È´¤±¤Æ¤¤¤¿¤Î¤Ç¡¢¿ô¹ÔÄø½¤Àµ¤·¤Þ¤·¤¿¡£ <item>ÊÑ¿ôÌ¾¤Ë "extip" ¤ò»È¤ï¤º¤Ë "ppp_ip" ¤ò»ÈÍÑ¤·¤Æ¤¤¤¿¡¢¤è¤ê¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Î¥¨¥é¡¼¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>DHCP ¤Î¥³¥á¥ó¥È¤Î¾Ï¤Î 3.3.1 ¾Ï¤Ç¡¢ "." ÂÐ "?" ¤Î¸í¿¢¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ <item>ICQ ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¥¹¥¯¥ê¥×¥È¤Î ")" ¤ÎµºÜËº¤ì¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ ¤Þ¤¿¡¢ -lt ¤«¤é -le ¤Þ¤Ç¤ÎÉ¾²Á¤òÊÑ¹¹¤·¤Þ¤·¤¿¡£ <item>Quake ¥â¥¸¥å¡¼¥ë¤ÎÊ¸Ë¡¤Ï "ports=" ¤ò»ÈÍÑ¤·¤Ê¤¤¤³¤È¤ò¹¹¿·¤·¤Þ¤·¤¿¡£  </itemize> 1.79 ¤«¤é 1.80 ¤Þ¤Ç¤ÎÊÑ¹¹ - 12/26/99 <itemize> <item>"ppp_ip" ¥¢¥É¥ì¥¹¤ÎÀßÄê¤Ç¡¢¥¹¥Ú¡¼¥¹¤Î¸í¿¢¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ <item>Ã±½ã¤Ê IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Î¸í¿¢¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ "deny" ¤ò "DENY" ¤Ë¤Ç¤¹¡£ <item>Bjorn ¤Î Linux ÍÑ "modutils" ¤Î URL ¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>NetFilter ¤È IPTables ¤Ë´Ø¤¹¤ë verbage ¤ò²Ã¤¨¡¢¤³¤Î HOWTO °¿¤Ï°ã¤¦ HOWTO ¤ËÄÉ²Ã¤µ¤ì¤ë¤Þ¤Ç¤Î´Ö¡¢ URL ¤òµ¤·¤Æ¤ª¤¤Þ¤·¤¿¡£  <item>¸Å¤¤ Quake ¥â¥¸¥å¡¼¥ë¤Î¥Ð¥°¤ò¥æ¡¼¥¶¤ËÄÌÃÎ¤¹¤ë¤¿¤á¤Ë¡¢Ã±½ã¤Ê /etc/rc.d/rc.firewall ¤ÎÎã¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>Æ°Åª IP ¥¢¥É¥ì¥¹(PPP µÚ¤Ó DHCP)¡¢¤è¤ê¿·¤·¤¤ DHCPCD ¤ÎÊ¸Ë¡¡¢¸Å¤¤ Quake ¥â¥¸¥å¡¼¥ë¤Î¥Ð¥°¤Ë´Ø¤·¤Æ¥æ¡¼¥¶¤ËÌÀ¼¨¤¹¤ë¤¿¤á¤Ë¡¢ IPFWADM ¤ò»ÈÍÑ¤·¤¿¶¯¤¤ /etc/rc.d/rc.firewall ¤ÎÎã¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>Æ°Åª IP ¥¢¥É¥ì¥¹(PPP µÚ¤Ó DHCP)¤È¡¢¸Å¤¤ Quake ¥â¥¸¥å¡¼¥ë¤Î¥Ð¥°¤Ë´Ø¤¹¤ë¾Ï¤Î½ñ¤Ëº¤ì¤ò*ÄÉ²Ã*¤¹¤ë¤¿¤á¤Ë¡¢ IPCHAINS ¤ò»ÈÍÑ¤·¤¿¶¯¤¤ /etc/rc.d/rc.firewall ¤ÎÎã¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>"¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤¬Æ°ºî¤·¤Ê¤¤"¤Î¾Ï¤Ë¡¢¥«¡¼¥Í¥ë 2.0.x ¤Î (H.323 ¥Ù¡¼¥¹¤Î) Microsoft NetMeeting v2.x ¤Î¥Ù¡¼¥¿ÈÇ¥â¥¸¥å¡¼¥ë¤ÎÃíµ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ NetMeeting 3.x µÚ¤Ó/Ëô¤Ï ¥«¡¼¥Í¥ë 2.2.x ¤ÇÆ°ºî¤¹¤ë¥Ð¡¼¥¸¥ç¥ó¤Ï¤Þ¤À¤¢¤ê¤Þ¤»¤ó¡£ </itemize> 1.78 ¤«¤é 1.79 ¤Þ¤Ç¤ÎÊÑ¹¹ - 10/21/99 <itemize> <item>¤³¤Î HOWTO ¤ÎÌ¾Á°¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ ¤â¤Ï¤ä¤³¤Î HOWTO ¤Ï MINI ¤Ç¤Ï¤¢¤ê¤Þ¤»¤ó! </itemize> 1.77 ¤«¤é 1.78 ¤Þ¤Ç¤ÎÊÑ¹¹ - 8/24/99 <itemize> <item>Fixed a typeo in "Section 6.6 - Multiple Internal Networks" where the -a policy was ommited. "6.6¾Ï - Ê£¿ô¤ÎÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯" ¤Ç¡¢ -a ¥Ý¥ê¥·¡¼¤¬¾ÊÎ¬¤µ¤ì¤¿¸í¿¢¤ò½¤Àµ¤·¤Þ¤·¤¿¡£  <item>2.2.x ¥«¡¼¥Í¥ë¤ÎÀßÄê¥ª¥×¥·¥ç¥ó¤Î "¥½¡¼¥¹·ÐÏ©À©¸æ¤µ¤ì¤¿¥Õ¥ì¡¼¥à¤ò¼Î¤Æ¤ë" ¤òºï½ü¤·¤Þ¤·¤¿¡£ ¤³¤ì¤Ï¸½ºß¥Ç¥Õ¥©¥ë¥È¤ÇÍ¸ú¤Ë¤Ê¤Ã¤Æ¤ª¤ê¡¢¥«¡¼¥Í¥ë¥³¥ó¥Ñ¥¤¥ë»þ¤Î¥ª¥×¥·¥ç¥ó¤È¤·¤Æ¼è¤ê½ü¤«¤ì¤¿¤«¤é¤Ç¤¹¡£ <item>IPCHAINS ¤Î¥Õ¥é¥°¥á¥ó¥Æ¡¼¥·¥ç¥ó¤Î¥Ð¥°¤ò¥æ¡¼¥¶¤ËÄÌÃÎ¤¹¤ë¤Ù¤¯¡¢¥«¡¼¥Í¥ë 2.2.x µÚ¤ÓÁ´¤Æ¤Î IPCHAINS ¤Î¾Ï¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>Lee Nevo ¤Î¸Å¤¤ IP ¥Þ¥¹¥«¥ì¡¼¥É¥¢¥×¥ê¥±¡¼¥·¥ç¥ó¤Î¥Ú¡¼¥¸¤ò»Ø¤·¤Æ¤¤¤¿Á´¤Æ¤Î URL ¤ò Seg ¤Î¿·¤·¤¤¥Ú¡¼¥¸¤Ø¹¹¿·¤·¤Þ¤·¤¿¡£ </itemize> 1.76 ¤«¤é 1.77 ¤Þ¤Ç¤ÎÊÑ¹¹ - 7/26/99 <itemize> <item>¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Î¾Ï¤Ç¡¢ "ipmasqadm ipportfw -f" ¤Ç¤Ê¤¯ "ipmasqadm ipportfw -C" ¤È¤·¤Æ¤¤¤¿¸í¿¢¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ </itemize> 1.75 ¤«¤é 1.76 ¤Þ¤Ç¤ÎÊÑ¹¹ - 7/19/99 <itemize> <item>¥Õ¥©¥ï¡¼¥À¤Î¾Ï¤Ë¤Æ¥æ¡¼¥¶¤¬²óÅú¤òÃµ¤¹¤³¤È¤Ê¤¯¤è¤êÌÀ³Î¤Ë¤¹¤ë¤¿¤á¤Ë¡¢ FAQ Æâ¤Î "ipfwadm: setsockopt failed: Protocol not available" ¡ÚÌõÃí: "ipfwadm: setsockopt ¤Ï¼ºÇÔ¤·¤Þ¤·¤¿: ¥×¥í¥È¥³¥ë¤ÏÍøÍÑ¤Ç¤¤Þ¤»¤ó"¡Û ¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>6.7¾Ï¤Î IPMASQADM ¤È "portfw" ¤Î´Ö°ã¤Ã¤¿Ê¸Ë¡¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ </itemize> 1.72 ¤«¤é 1.75 ¤Þ¤Ç¤ÎÊÑ¹¹ - 6/19/99 <itemize> <item>¼å¤¤ IPFWADM µÚ¤Ó IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤È¶¯¤¤ IPFWADM ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÆ±ÍÍ¤Ë¡¢ quake ¥â¥¸¥å¡¼¥ë¤Î¥Ý¡¼¥ÈÀßÄê¤ÎÍ×µá¤ò½¤Àµ¤·¤Þ¤·¤¿¡£  <item>ICQ ¤Î¥Ý¡¼¥È4000ÈÖ¤òÄ¾ÀÜ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤·¡¢"ÈóSock"¥×¥í¥¥·¤ÎÀßÄê¤òÍÑ¤¤¤ë¤³¤È¤Ê¤¯ ICQ ¤Î¥Ç¥Õ¥©¥ë¥ÈÀßÄê¤ò»ÈÍÑ¤¹¤ë¥æ¡¼¥¶¥ì¥Ý¡¼¥È¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>IPMASQADM ¥Ä¡¼¥ë¤Î URL ¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>Taro Fukunaga tarozax@earthlink.net ¤Ø¤Î»²¾È¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ Èà¤Ï HOWTO ¤Î MkLinux ¤Ø¤Î°Ü¿¢¤ò¹Ô¤Ã¤Æ¤¤¤Þ¤¹¡£  <item>¿·¤·¤¤ IPCHAINS ¤ò¥µ¥Ý¡¼¥È¤¹¤ë Sonny Parlin ¤Î FWCONFIG ¥Ä¡¼¥ë¤ÎÀëÅÁ¤ò¹¹¿·¤·¤Þ¤·¤¿¡£  <item>Fred Vile ¤Î¥Ñ¥Ã¥Á¤Ë¤è¤ë FTP ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¥¢¥¯¥»¥¹¤Ï 2.0.x ¥«¡¼¥Í¥ë¤Ç*¤Î¤ß*Í¸ú¤Ç¤¢¤ë¤³¤È¤òÄÉµ¤·¤Þ¤·¤¿¡£  <item>2.2.x ¥«¡¼¥Í¥ë¤Î¥¹¥Æ¥Ã¥×¤Ç¡¢¼Â¸³ÃÊ³¬¤Î¥¿¥°¤Ë´Ø¤¹¤ë¶Ï¤«¤ÊÀâÌÀ¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>¶¨ÎÏ¼Ô°ìÍ÷¤Ë LooseUDP ¥Ñ¥Ã¥Á¤Îºî¼Ô Glen Lamb ¤ÎÌ¾Á°¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>LooseUDP ¥Ñ¥Ã¥Á¤Î¥¤¥ó¥¹¥È¡¼¥ë¤Ë´Ø¤·¡¢Èó°µ½Ì¥Ñ¥Ã¥Á¤Ï "cat" ¤ò»ÈÍÑ¤¹¤Ù¤¤Ç¤¢¤ëÀâÌÀ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>IPAUTO FAQ ¤Î¾Ï¤Î¸í¿¢¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ <item>»ä¤Ï IPFWADM ¤È IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤Î¤¿¤á¤Ë DHCP ¥¯¥é¥¤¥¢¥ó¥È¤Î¥Ý¡¼¥ÈÈÖ¹æ¤òµÕ¤Ë¤·¤Þ¤·¤¿¡£ »ä¤¬¹Ô¤Ã¤¿Í×µá¤Ï¡¢¤¢¤Ê¤¿¤Î Linux ¥µ¡¼¥Ð¤¬ DHCP ¥µ¡¼¥Ð¤Ç¤¢¤Ã¤¿¤«¤É¤¦¤«¤Ç¤·¤¿¡£ <item>Á´¤Æ¤Î¼å¤¤¥ë¡¼¥ë¥»¥Ã¥È¡¢µÚ¤Ó¶¯¤¤¥ë¡¼¥ë¥»¥Ã¥È¤ÎÎã¤ËÌÀ¼¨Åª¤Ë /sbin ¤Ø¤Î PATH ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>PPP µÚ¤Ó DHCP ¥æ¡¼¥¶¤Î°Ù¤Ë¡¢¶¯¤¤ IPFWADM ¤Î¾Ï¤ËÆ°Åª IP ¥¢¥É¥ì¥¹¤Ë´Ø¤¹¤ë´ö¤Ä¤«¤Î²òÌÀ¤ò¹Ô¤¤¤Þ¤·¤¿¡£ »ä¤Ï¤Þ¤¿¡¢¶¯¤¤¥ë¡¼¥ë¥»¥Ã¥È¤Ï PPP ¤¬µ¯Æ°¤µ¤ì¤¿¤ê DHCP ¤Î IP ¥¢¥É¥ì¥¹¤Î¥ê¡¼¥¹¤¬¹¹¿·¤µ¤ì¤¿»þ¤ËºÆµ¯Æ°¤µ¤ì¤ë¤Ù¤¤Ç¤¢¤ë¤³¤È¤òÄÉµ¤·¤Þ¤·¤¿¡£ <item>¥«¡¼¥Í¥ë 2.2.x ¤ÎÉ¬Í×¾ò·ï¤ÎÃæ¤Ë»²¾È¤ò²Ã¤¨¤Æ¡¢ICQ ¤Î FAQ ¤Î¾Ï¤ò¹¹¿·¤·¡¢ICQ MASQ ¥â¥¸¥å¡¼¥ë¤Îºî¼Ô¤Î Andrew Deryabin ¤ò¶¨ÎÏ¼Ô°ìÍ÷¤Î¾Ï¤ËÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>FAQ ¤Î¾Ï¤Ë²¿¸Î 2.1.x µÚ¤Ó 2.2.x ¥«¡¼¥Í¥ë¤Ç IPCHAINS ¤Ë°Ü¹Ô¤·¤¿¤Î¤«¤Ë´Ø¤·¡¢´ö¤Ä¤«¤ÎÀâÌÀ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>¥Þ¥¹¥«¥ì¡¼¥É¥µ¡¼¥Ð¤òÄÌ²á¤¹¤ë Microsoft ¤Î¥Õ¥¡¥¤¥ë/°õºþ/¥É¥á¥¤¥ó¥µ¡¼¥Ó¥¹ (Samba) ¤Ë´Ø¤¹¤ë¾®¤µ¤Ê FAQ ¤Î¾Ï¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ ¤³¤ì¤ÈÆ±»þ¤Ë¡¢¤è¤ê¾ÜºÙ¤ÊÆâÍÆ¤Î°Ù¤Ë Microsoft ÃÎ¼±¥Ù¡¼¥¹Ê¸½ñ (Knowledge base document) ¤Î URL ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>FAQ ¤Î¾Ï¤Ë Debian ¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤Ï IP ¥Þ¥¹¥«¥ì¡¼¥É¤ò¥µ¥Ý¡¼¥È¤·¤Æ¤¤¤Ê¤¤ÀâÌÀ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£  <item>FAQ ¤Î¾Ï¤Î¥Þ¥¹¥«¥ì¡¼¥É¥µ¥Ý¡¼¥ÈºÑ¤ß¥Ç¥£¥¹¥È¥ê¥Ó¥å¡¼¥·¥ç¥ó¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>FAQ ¤Î¥¨¥¤¥ê¥¢¥¹ NIC ¤Î¾Ï¤Ë¡¢¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î¥¨¥¤¥ê¥¢¥¹¤Ï¥Þ¥¹¥«¥ì¡¼¥É*¤Ç¤¤Ê¤¤*»Ý¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ ¡ÚÌõÃí: ¡Ö¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤Î¥¨¥¤¥ê¥¢¥¹¡×¤Ï¡¢¥«¡¼¥Í¥ë¤ÎÀßÄê¤Ë¤¢¤ë "IP: Aliasing"¤ò»Ø¤·¤Æ¤¤¤Þ¤¹¡£°ì¤Ä¤Î¥¤¥ó¥¿¡¼¥Õ¥§¡¼¥¹¤ËÊ£¿ô¤Î IP ¥¢¥É¥ì¥¹¤ò³ä¤ê¿¶¤ëµ¡Ç½¤Ç¤¹¡£¡Û  <item>¤¦¤ï¤Ã.. º£¤Þ¤Çµ¤¤Å¤«¤Ê¤«¤Ã¤¿¤±¤É¡¢¶¯¤¤¥ë¡¼¥ë¥»¥Ã¥È¤Î¾Ï¤Î "ppp-ip" ¤È¤¤¤¦ÊÑ¿ôÌ¾¤ÏÌµ¸ú¤Ç¤¹! "ppp_ip" ¤Ë¥ê¥Í¡¼¥à¤·¤Þ¤·¤¿¡£ <item>IPFWADM µÚ¤Ó IPCHAINS ¤ÎÎ¾Êý¤ÎÃ±½ã¤Ê¥ë¡¼¥ë¥»¥Ã¥È¤ÎÀßÄêÎÎ°è¤Ç¡¢ DHCP ¥È¥é¥Õ¥£¥Ã¥¯¤òµö²Ä¤¹¤ë²Õ½ê¤ò¥³¥á¥ó¥È¥¢¥¦¥È¤·¤Þ¤·¤¿¡£ ÌäÂê¤Ï¡¢ºÇ¸å¤Î reject ¹Ô¤Ç¤·¤¿! ¥Á¥¯¥·¥ç¥¦! ¤³¤ì¤éÎ¾Êý¤ò¾Ï¤Î¾å¤Ø°ÜÆ°¤µ¤»¤Þ¤·¤¿¡£  <item>Ã±½ã¤Ê IPCHAINS ¤ÎÀßÄê¤Ç¡¢ DHCP ¥æ¡¼¥¶¤Î°Ù¤Î¥³¥á¥ó¥È¥¢¥¦¥È¹Ô¤Ç¡¢ IPCHAINS ¤Î "-i" ¥Ñ¥é¥á¡¼¥¿¤Ç¤Ê¤¯¡¢ IPFWADM ¤Î "-W" ¥³¥Þ¥ó¥É¤ò»ÈÍÑ¤·¤Æ¤¤¤Þ¤·¤¿¡£  <item>¥Õ¥©¥ï¡¼¥À¤Î¾Ï¤Ë¡¢ÍÌ¾¤Ê "ipfwadm: setsockopt failed: Protocol not available" ¡ÚÌõÃí: "ipfwadm: setsockopt ¤Ï¼ºÇÔ¤·¤Þ¤·¤¿: ¥×¥í¥È¥³¥ë¤ÏÍøÍÑ¤Ç¤¤Þ¤»¤ó"¡Û ¥¨¥é¡¼¥á¥Ã¥»¡¼¥¸¤Î²ò·è¤Î¾®¤µ¤ÊÀëÅÁ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ ¤³¤ì¤Ï¹¹¤Ë¡¢¤â¤·¥«¡¼¥Í¥ë¤Î IPPORTFW ¤¬Í¸ú¤Ê¾ì¹ç¤Ë¡¢¿Í¡¹¤Ë³ÎÇ§¤µ¤»¤ë¾®¤µ¤Ê /proc ¥Æ¥¹¥È¤ò´Þ¤ó¤Ç¤¤¤Þ¤¹¡£ ¤Þ¤¿¡¢Ã±½ã¤Ê¸¡º÷¤Î°Ù¤Ë FAQ ¤Î¾Ï¤Ë¤³¤Î¥¨¥é¡¼¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>¤³¤Î HOWTO ¤Ë¶¯¤¤ IPCHAINS ¤Î¥ë¡¼¥ë¥»¥Ã¥È¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>FAQ ¤Î¾Ï¤Ë "kernel: ip_masq_new(proto=UDP): no free ports."¡ÚÌõÃí: "kernel: ip_masq_new(prot=UDP): ¶õ¤¥Ý¡¼¥È¤¬¤¢¤ê¤Þ¤»¤ó¡£"¡Û ¥¨¥é¡¼¥á¥Ã¥»¡¼¥¸¤ÎÀâÌÀ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>IPMASQADM PORTFW ¥ë¡¼¥ë¤Î¥¹¥¯¥ê¥×¥È¤ÎÎã¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>Linux Documentation Project (LDP) ¤Î URL ¤Î´ö¤Ä¤«¤ò¹¹¿·¤·¤Þ¤·¤¿¡£ <item>Á´¤Æ¤Î rc.firewall ¥ë¡¼¥ë¥»¥Ã¥È¤Î¥â¥¸¥å¡¼¥ëÆÉ¤ß¹þ¤ß¤Î¾Ï¤Ë¡¢ Quake III ¥µ¥Ý¡¼¥È¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>ICQ¤Î¤¿¤á¤Î IPMASQADM ¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ </itemize> <item>1.72 - 4/14/99 - Dranch - Windows ¤Î NAT/¥×¥í¥¥·¤ÎÂåÂØ¼êÃÊ¤ò¡¢²Á³Ê¤Î³µÎ¬¤È URL ¤È¶¦¤Ë¡¢Âçµ¬ÌÏ¤Ê¥ê¥¹¥È¤ËÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>1.71 - 4/13/99 - Dranch - Ê£¿ô¤Î¥Þ¥¹¥«¥ì¡¼¥É¤µ¤ì¤¿ÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤Î°Ù¤Î IPCHAINS ¤ÎÀßÄê¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ ICQ ¤ÎÀßÄê¤Ç¡¢ ICQ ¤Î¥Ç¥Õ¥©¥ë¥È¤Î60ÉÃ¥¿¥¤¥à¥¢¥¦¥È¤È IPFWADM/IPCHAINS ¤Î160ÉÃ¥¿¥¤¥à¥¢¥¦¥È¤òÊÑ¹¹¤·¤Þ¤·¤¿¡£ MASQ µÚ¤Ó MASQ-DEV ¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤È¤½¤ÎÅÐÏ¿¤Î¼ê½ç¤ò¹¹¿·¤·¤Þ¤·¤¿¡£  <item>1.70 - 3/30/99 - Dranch - SMTP/POP-3 ¤Î¥¿¥¤¥à¥¢¥¦¥ÈÌäÂê¤È¡¢Ê£¿ô¤ÎÆâÉô¥Í¥Ã¥È¥ï¡¼¥¯¤ò IPROUTE2 ¤òÍÑ¤¤¤Æ°Û¤Ê¤ë³°Éô IP ¥¢¥É¥ì¥¹¤Ø¥Þ¥¹¥«¥ì¡¼¥É¤¹¤ëÊýË¡¤ò FAQ ¤Î¾Ï¤ËÄÉ²Ã¤·¤Þ¤·¤¿¡£ <item>1.65 - 3/29/99 - Dranch - ¸í¿¢¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ 2.2.x ¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó¤ÎÉ¬Í×¹àÌÜ¤ò²òÌÀ¤·¤Þ¤·¤¿¡£ Æ°Åª PPP IP ¥¢¥É¥ì¥¹¤Î¥µ¥Ý¡¼¥È¤ò¶¯¤¤¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¾Ï¤ËÄÉ²Ã¤·¤Þ¤·¤¿¡£ quake II ¥â¥¸¥å¡¼¥ë¤Î°Ü¿¢¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ LooseUDP ¥Ñ¥Ã¥Á¤ÏºÇ¿·¤Î 2.2.x ¥«¡¼¥Í¥ë¤ËÁÈ¤ß¹þ¤Þ¤ì¡¢ Dan Kegel ¤Ç¤Ï¤Ê¤¯ Glenn Lamb ¤Îºî¤Ç¤¢¤ë¤³¤È¤òÌÀµ¤·¤Þ¤·¤¿¡£ ¸ß´¹À¤Î¾Ï¤Ë¤è¤êÂ¿¤¯¤Î¥²¡¼¥à¤Î¾ðÊó¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£  <item>1.62 - Dranch - ºÇ¸å¤ÎÂè1¥É¥é¥Õ¥ÈÃÊ³¬¤ÎÊÑ¹¹¤òÊ¸½ñ¤Ë¹Ô¤¤¡¢ MASQ ¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë¹ðÃÎ¤·¤Þ¤·¤¿¡£ <item>1.61 - Dranch - ÊÔ½¸¤ÎÊÑ¹¹¤ò²Ã¤¨¤Æ¡¢ÂÎºÛ¤òÀ°¤¨¡¢¡¢Windows95 ¤È NT ¤ÎÀßÄê¤Ë¤ª¤±¤ë¤¤¤¯¤Ä¤«¤Î¥¨¥é¡¼¤ò½¤Àµ¤·¤Þ¤·¤¿¡£ <item>1.58 - Dranch - ¥Ý¡¼¥È¥Õ¥©¥ï¡¼¥Ç¥£¥ó¥°¤Î¾Ï¤ÎÄÉ²Ã; LooseUDP ¤ÎÀßÄê; IRC ¥æ¡¼¥¶ ¤Î°Ù¤Î Ident ¥µ¡¼¥Ð¡¢¥Õ¥¡¥¤¥¢¥¦¥©¡¼¥ë¤Î¥í¥°¤ÎÆÉ¤ßÊý¡¢ÌÇÂ¿¤Ë»È¤ï¤ì¤Ê¤¤ CuSeeme Mini-HOWTO ¤Îºï½ü¡£ <item>1.55 - Dranch - ´°Á´¤Ê¥ª¡¼¥Ð¡¼¥Û¡¼¥ë¡¢ÆÃÄ§¤È FAQ ¤ÎÄÉ²Ã¡¢ v1.50 HOWTO ¤ÎÁ´ÈÌÅª¤ÊÊÔ½¸¡£ 2.2.x ¥«¡¼¥Í¥ë¤È IPCHAINS ¤ÎÀßÄê¤ò´°À®¤·¤Þ¤·¤¿¡£ Å¬ÍÑÎã¤Î°Ù¤Ë IPAUTOFW ¤«¤é IPPORTFW ¤Ø¤ÎÊÑ´¹¤ò¹Ô¤¤¤Þ¤·¤¿¡£ ½ô¡¹¤ÎÂ¾¤ÎÊ¸½ñ¤ä¥æ¡¼¥Æ¥£¥ê¥Æ¥£¤Î¥µ¥¤¥È¤Ø¤ÎÂ¿¤¯¤Î URL ¤òÄÉ²Ã¤·¤Þ¤·¤¿¡£ ¤È¤Æ¤âÂ¿¤¯¤ÎÊÑ¹¹¤¬¤¢¤ê¤Þ¤¹.. ¤ß¤ó¤Ê¤¬¹¥¤ó¤Ç¤¯¤ì¤ë¤³¤È¤òË¾¤ß¤Þ¤¹¡£ Ê¸½ñ¤¬ IP MASQ ¥á¡¼¥ê¥ó¥°¥ê¥¹¥È¤Ë¤è¤Ã¤ÆÄ´¤Ù¤é¤ì¡¢¾µÇ§¤µ¤ì¤ë¤Þ¤Ç¤Ï¡¢¤³¤ÎHOWTO ¤Î¿·ÈÇ¤Î LDP ¥×¥í¥¸¥§¥¯¥È¤Ë¤è¤ëºÇ½ªÈ¯¹Ô¤Ï¹Ô¤ï¤ì¤Þ¤»¤ó(¤½¤Î¸å v2.00 ¤Ë¤Ê¤ê¤Þ¤¹)¡£  <item>1.50 - Ambrose - HOWTO ¤Î½ÅÂç¤Ê¹¹¿·¤È¡¢ 2.2.0 ¥«¡¼¥Í¥ë¤È IPCHAINS ¤ÎÀßÄê¤Î½é´üÃÊ³¬¤ÎÄÉ²Ã¡£ <item>1.20 - Ambrose - 2.0.x ¥«¡¼¥Í¥ë°ÊÁ°¤È IPFWADM ¤Ë¤ÆÃ±ÆÈ¤Ç°·¤ï¤ì¤¿¡¢¤è¤ê¿·¤·¤¤ HOWTO ¤Î¤¦¤Á¤Î°ì¤Ä¡£  </itemize>   <sect>ÆüËÜ¸ìÌõ¤Ë¤Ä¤¤¤Æ ÆüËÜ¸ìÌõ ½éÈÇ: 2001Ç¯ 7·î12Æü JF Project ¡Ö¥Á¡¼¥à Masquerade¡× ËÝÌõ¼Ô°ìÍ÷(·É¾ÎÎ¬¡¢50²»½ç): <itemize> <item>¸åÆ£²íÀ² <magotou@fubyshare.gr.jp> 6¾Ï <item>¾¾ÅÄÍÛ°ì <matsuda@palnet.or.jp> 2,3,8¾Ï <item>»³¸ý¤·¤ó¤´ <shingo@axs2.com> 1,5,7¾Ï <item>»ÍÄâ <isao@m05.htmnet.ne.jp> 4¾Ï </itemize> ¤³¤ÎÊ¸½ñ¤òËÝÌõ¤¹¤ë¤Ë¤¢¤¿¤ê¡¢¿å¸¶Ê¸¤µ¤ó <mizuhara@acm.org> ¤Î <url url="http://www.linux.or.jp/JF/JFdocs/IP-Masquerade.html" name="Linux IP Masquerade mini HOWTO ÆüËÜ¸ìÌõ"> ¤«¤éÂ¿¤¯¤ò°úÍÑÃ×¤·¤Þ¤·¤¿¡£ ¤³¤ÎÊ¸½ñ¤òËÝÌõ¤¹¤ë¤Ë¤¢¤¿¤ê¡¢°Ê²¼¤ÎÊý¡¹¤«¤é¥¢¥É¥Ð¥¤¥¹¤ò¤¤¤¿¤À¤¤Þ¤·¤¿¡£(50²»½ç) <newline> ËÜÅö¤Ë¤¢¤ê¤¬¤È¤¦¤´¤¶¤¤¤Þ¤·¤¿¡£ <itemize> <item>²¬ËÜ°ì¹¬¤µ¤ó <kokamoto@itg.hitachi.co.jp> <item>¤«¤Í¤³¤»¤¤¤¸¤µ¤ó <se-kane@str.hitachi.co.jp> <item>konkiti¤µ¤ó <konkiti@lares.dti.ne.jp> <item>ÀéÃ¶Íµ»Ê¤µ¤ó <ysenda@pop01.odn.ne.jp> <item>Éð°æ¿¸÷¤µ¤ó <takei@webmasters.gr.jp> <item>ÌîËÜ¹À°ì¤µ¤ó <hng@ps.ksky.ne.jp> <item>ÁáÀî¿Î¤µ¤ó <uv9h-hykw@asahi-net.or.jp> <item>¿å¸¶Ê¸¤µ¤ó <mizuhara@acm.org> <item>¿¹ËÜ½ß¤µ¤ó <morimoto@xantia.citroen.org> </itemize> </article>